Overview

overview

8

Static

static

3

bc820eef80...f1.exe

windows7-x64

7

bc820eef80...f1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bc820eef8049e6838b3589c8decd3bfca6d61179233a727d3ba7971ef42b48f1

  • Size

    2.0MB

  • Sample

    240808-hs4kvavbne

  • MD5

    5a05247c6b9682ca16539ed71a0a0af4

  • SHA1

    2f94efae7f6b4991ec57d01d5e143266c4407198

  • SHA256

    bc820eef8049e6838b3589c8decd3bfca6d61179233a727d3ba7971ef42b48f1

  • SHA512

    c49407f686d71a6003d2a5a92a58b770bbee7dff9ae2d7742a4225cebf3afb994f5fe957e19116ff5024e182ef5eeab5e8737e3595a1c4620a28edb3a459cd66

  • SSDEEP

    49152:7VAbwCTx2h3bfEF337LYkDNqxyAnEnNZeZpWV41ktqwaqawPoSSXPbOv:RARTsrfEd379NwyAENZe68kKKoRqv

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      bc820eef8049e6838b3589c8decd3bfca6d61179233a727d3ba7971ef42b48f1

    • Size

      2.0MB

    • MD5

      5a05247c6b9682ca16539ed71a0a0af4

    • SHA1

      2f94efae7f6b4991ec57d01d5e143266c4407198

    • SHA256

      bc820eef8049e6838b3589c8decd3bfca6d61179233a727d3ba7971ef42b48f1

    • SHA512

      c49407f686d71a6003d2a5a92a58b770bbee7dff9ae2d7742a4225cebf3afb994f5fe957e19116ff5024e182ef5eeab5e8737e3595a1c4620a28edb3a459cd66

    • SSDEEP

      49152:7VAbwCTx2h3bfEF337LYkDNqxyAnEnNZeZpWV41ktqwaqawPoSSXPbOv:RARTsrfEd379NwyAENZe68kKKoRqv

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks