Overview

overview

8

Static

static

3

d53ea22d42...b5.exe

windows7-x64

7

d53ea22d42...b5.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d53ea22d428f94a57fff56b161effd5156c6112559d04bd0fbffbc9cf9347bb5

  • Size

    3.1MB

  • Sample

    240816-3rj52axhqq

  • MD5

    45256a1542138cc6bbf5e05dbfbd28ff

  • SHA1

    803d10c578073615254b41f7224a97f7c1163e92

  • SHA256

    d53ea22d428f94a57fff56b161effd5156c6112559d04bd0fbffbc9cf9347bb5

  • SHA512

    3342493e796aea749591a1becc8fbaa24670dab3c0c55688a66b03f577df2e28d56cc503121c2ccbaa25be3193481a968ecb261b421c237236419e44f6394ac1

  • SSDEEP

    49152:XVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:FA7VyRPS7MLq4ykF09+riyXWz6Ha

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      d53ea22d428f94a57fff56b161effd5156c6112559d04bd0fbffbc9cf9347bb5

    • Size

      3.1MB

    • MD5

      45256a1542138cc6bbf5e05dbfbd28ff

    • SHA1

      803d10c578073615254b41f7224a97f7c1163e92

    • SHA256

      d53ea22d428f94a57fff56b161effd5156c6112559d04bd0fbffbc9cf9347bb5

    • SHA512

      3342493e796aea749591a1becc8fbaa24670dab3c0c55688a66b03f577df2e28d56cc503121c2ccbaa25be3193481a968ecb261b421c237236419e44f6394ac1

    • SSDEEP

      49152:XVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:FA7VyRPS7MLq4ykF09+riyXWz6Ha

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks