Overview

overview

8

Static

static

3

61da969f9c...a3.exe

windows7-x64

7

61da969f9c...a3.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    61da969f9caa44e5c458d0b38b729ce2b5bcbdd221cd4afcc1546afeccbf57a3

  • Size

    2.0MB

  • Sample

    240809-a6evmstclp

  • MD5

    2799e5968eb8f08e6211d2028c71a50d

  • SHA1

    28c9986febaec2e0ca999d5166a30e5a8834938f

  • SHA256

    61da969f9caa44e5c458d0b38b729ce2b5bcbdd221cd4afcc1546afeccbf57a3

  • SHA512

    95267893698e178f415d3c1533783d6e947e31d8a8610d3a73ec4a01e2700b54d5b94d6d894525d851b0c8ff02fd73471b51a9521eb0734a963e5a4826e0ba8b

  • SSDEEP

    49152:zVAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:ZApQx5+Mc27g9tfoMv

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      61da969f9caa44e5c458d0b38b729ce2b5bcbdd221cd4afcc1546afeccbf57a3

    • Size

      2.0MB

    • MD5

      2799e5968eb8f08e6211d2028c71a50d

    • SHA1

      28c9986febaec2e0ca999d5166a30e5a8834938f

    • SHA256

      61da969f9caa44e5c458d0b38b729ce2b5bcbdd221cd4afcc1546afeccbf57a3

    • SHA512

      95267893698e178f415d3c1533783d6e947e31d8a8610d3a73ec4a01e2700b54d5b94d6d894525d851b0c8ff02fd73471b51a9521eb0734a963e5a4826e0ba8b

    • SSDEEP

      49152:zVAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:ZApQx5+Mc27g9tfoMv

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks