Overview

overview

8

Static

static

3

34fe6d4c5a...e6.exe

windows7-x64

7

34fe6d4c5a...e6.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    34fe6d4c5a3cc91a9f3504ec93225ba99387248aeb804663840f04f9cf83c9e6

  • Size

    3.1MB

  • Sample

    240808-hk47ea1arl

  • MD5

    a5e404e4996f759a9cc5394f6a1e1867

  • SHA1

    671b6d67b1cbd37b8a1b763d152d1c7159b34416

  • SHA256

    34fe6d4c5a3cc91a9f3504ec93225ba99387248aeb804663840f04f9cf83c9e6

  • SHA512

    e156fd52c962ca4e84578c95f550ae20d29a207d704cc795d2dea7bfe5b5846cff6e343571478279c93878f1e76bdec90da923c6dcf64af7fc82a8c73f7d6ce8

  • SSDEEP

    49152:NNEyYYC1hqiJckG38dBFOhg5/6qF3rjb/h4CNcTCP8xphzSNtOSe+aS:rEP1y3+0hgh6u/ZcTCP8BzONaS

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      34fe6d4c5a3cc91a9f3504ec93225ba99387248aeb804663840f04f9cf83c9e6

    • Size

      3.1MB

    • MD5

      a5e404e4996f759a9cc5394f6a1e1867

    • SHA1

      671b6d67b1cbd37b8a1b763d152d1c7159b34416

    • SHA256

      34fe6d4c5a3cc91a9f3504ec93225ba99387248aeb804663840f04f9cf83c9e6

    • SHA512

      e156fd52c962ca4e84578c95f550ae20d29a207d704cc795d2dea7bfe5b5846cff6e343571478279c93878f1e76bdec90da923c6dcf64af7fc82a8c73f7d6ce8

    • SSDEEP

      49152:NNEyYYC1hqiJckG38dBFOhg5/6qF3rjb/h4CNcTCP8xphzSNtOSe+aS:rEP1y3+0hgh6u/ZcTCP8BzONaS

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks