Overview

overview

7

Static

static

3

280ca13913...b6.exe

windows7-x64

7

280ca13913...b6.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    280ca139136ad70ed83e1516711be7c48838a5b09c40874c8672ce6ade1834b6

  • Size

    96KB

  • Sample

    240806-ymkhsayemj

  • MD5

    0031d7687a0dd27fbc36c7487ea13420

  • SHA1

    8392673f7d384fad94940a8d877e0b0a1fef2bee

  • SHA256

    280ca139136ad70ed83e1516711be7c48838a5b09c40874c8672ce6ade1834b6

  • SHA512

    2c9feab5571dea595428571e23fedce545da07a18dd27455885ee881210711531433b8928f7c53ae6cf8bb460bb0690c6e792e4fc63c9ab65802f0947362f373

  • SSDEEP

    768:bYT2ljlL5b+n8WF6mucTrVwp6NS3w0nFrTymjuCjqO021qVtj5G+ax10vZP5kcNx:bjj95b+n8wKcTI6upqOM1fv5kcw6Gb

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      280ca139136ad70ed83e1516711be7c48838a5b09c40874c8672ce6ade1834b6

    • Size

      96KB

    • MD5

      0031d7687a0dd27fbc36c7487ea13420

    • SHA1

      8392673f7d384fad94940a8d877e0b0a1fef2bee

    • SHA256

      280ca139136ad70ed83e1516711be7c48838a5b09c40874c8672ce6ade1834b6

    • SHA512

      2c9feab5571dea595428571e23fedce545da07a18dd27455885ee881210711531433b8928f7c53ae6cf8bb460bb0690c6e792e4fc63c9ab65802f0947362f373

    • SSDEEP

      768:bYT2ljlL5b+n8WF6mucTrVwp6NS3w0nFrTymjuCjqO021qVtj5G+ax10vZP5kcNx:bjj95b+n8wKcTI6upqOM1fv5kcw6Gb

    Score
    7/10
    discoveryspywarestealer

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks