Overview

overview

8

Static

static

3

fb230db0b8...46.exe

windows7-x64

7

fb230db0b8...46.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    fb230db0b8ea6aba9c07f7e966f008fa524c40f054369146ae51b0b47bfeb746

  • Size

    3.1MB

  • Sample

    240818-1glj1ayfnn

  • MD5

    afd7a4329dbc7b46dc8e31e9a25e1a56

  • SHA1

    9e116e36f0fc2f5f50eb78d04b0a0ebba4999739

  • SHA256

    fb230db0b8ea6aba9c07f7e966f008fa524c40f054369146ae51b0b47bfeb746

  • SHA512

    9c4cdfc1712cd72e4bb036a342c0ff53befc3a57b0df2bd9b250b79b2fa1acda0e801b9871678d7089a3c9cd296f044bb7e91a8b986e4f8d860cac3ca9ab6eec

  • SSDEEP

    49152:lVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:TA7VyRPS7MLq4ykF09+riyXWz6Ha

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      fb230db0b8ea6aba9c07f7e966f008fa524c40f054369146ae51b0b47bfeb746

    • Size

      3.1MB

    • MD5

      afd7a4329dbc7b46dc8e31e9a25e1a56

    • SHA1

      9e116e36f0fc2f5f50eb78d04b0a0ebba4999739

    • SHA256

      fb230db0b8ea6aba9c07f7e966f008fa524c40f054369146ae51b0b47bfeb746

    • SHA512

      9c4cdfc1712cd72e4bb036a342c0ff53befc3a57b0df2bd9b250b79b2fa1acda0e801b9871678d7089a3c9cd296f044bb7e91a8b986e4f8d860cac3ca9ab6eec

    • SSDEEP

      49152:lVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:TA7VyRPS7MLq4ykF09+riyXWz6Ha

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks