Overview

overview

8

Static

static

3

600b9f3208...84.exe

windows7-x64

7

600b9f3208...84.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    600b9f320895013dac84ed24003ed9fb245d66e1694a5b391e39f720f349f084

  • Size

    3.1MB

  • Sample

    240809-dc9dyayhkh

  • MD5

    9cac191f7fe67db8be809c540c181589

  • SHA1

    4a773494cfeae94988cdb4f43f4ac3f2994df03f

  • SHA256

    600b9f320895013dac84ed24003ed9fb245d66e1694a5b391e39f720f349f084

  • SHA512

    a569474b8156ab46dccaa2c56f42748000e69730b4ef826ef6a050deca063294fd62a0936bbdba8e843507b88d50518932632ad16af56bb04fbd9fb1c4cf1d1a

  • SSDEEP

    49152:6NEyYYC1hqiJckG38dBFOhg5/6qF3rjb/h4CNcTCP8xphzSNtOSe+aS:AEP1y3+0hgh6u/ZcTCP8BzONaS

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      600b9f320895013dac84ed24003ed9fb245d66e1694a5b391e39f720f349f084

    • Size

      3.1MB

    • MD5

      9cac191f7fe67db8be809c540c181589

    • SHA1

      4a773494cfeae94988cdb4f43f4ac3f2994df03f

    • SHA256

      600b9f320895013dac84ed24003ed9fb245d66e1694a5b391e39f720f349f084

    • SHA512

      a569474b8156ab46dccaa2c56f42748000e69730b4ef826ef6a050deca063294fd62a0936bbdba8e843507b88d50518932632ad16af56bb04fbd9fb1c4cf1d1a

    • SSDEEP

      49152:6NEyYYC1hqiJckG38dBFOhg5/6qF3rjb/h4CNcTCP8xphzSNtOSe+aS:AEP1y3+0hgh6u/ZcTCP8BzONaS

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks