Overview

overview

9

Static

static

3

24c76871e8...92.exe

windows7-x64

1

24c76871e8...92.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    24c76871e844d80ed4b9622853ba3492.exe

  • Size

    6.7MB

  • Sample

    240724-fn5agazakl

  • MD5

    24c76871e844d80ed4b9622853ba3492

  • SHA1

    df3395f4d49a3a9e680cedd6af46220dc048e239

  • SHA256

    c4cfe8587360a3fa73fa5cb09ec3bcf55a21d8991d42af77d2bf93fef83d5e97

  • SHA512

    ddade4fe65a8189fc8fdd8ac452a80abf0d102c2ed72c79d98831c6f784177db74adb338289da1b90ef9bbfd7c614793a455ce1a2f1924fff8886c15af1d7fda

  • SSDEEP

    98304:uYuTbLi9oqTRXpP5OdiB73Q07pVTjrc/eEz0/phh1lQ:lQaJl8CQGpVQ/eW0/dnQ

Score
9/10
credential_accessdiscoveryspywarestealer

Malware Config

Targets

    • Target

      24c76871e844d80ed4b9622853ba3492.exe

    • Size

      6.7MB

    • MD5

      24c76871e844d80ed4b9622853ba3492

    • SHA1

      df3395f4d49a3a9e680cedd6af46220dc048e239

    • SHA256

      c4cfe8587360a3fa73fa5cb09ec3bcf55a21d8991d42af77d2bf93fef83d5e97

    • SHA512

      ddade4fe65a8189fc8fdd8ac452a80abf0d102c2ed72c79d98831c6f784177db74adb338289da1b90ef9bbfd7c614793a455ce1a2f1924fff8886c15af1d7fda

    • SSDEEP

      98304:uYuTbLi9oqTRXpP5OdiB73Q07pVTjrc/eEz0/phh1lQ:lQaJl8CQGpVQ/eW0/dnQ

    Score
    9/10
    credential_accessdiscoveryspywarestealer

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

      credential_accessstealer

    • Reads WinSCP keys stored on the system

      Tries to access WinSCP stored sessions.

      spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks