Overview

overview

8

Static

static

3

6b55a2a720...e0.exe

windows7-x64

7

6b55a2a720...e0.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    6b55a2a720d1745f6e13fec9b95aef219688eda0988c0fafdf489b562a5620e0

  • Size

    2.0MB

  • Sample

    240818-2dxcrsyare

  • MD5

    e94e14887ce2c4f0fa93dd9d69d7f42e

  • SHA1

    f1250282827448c76c96d3789e26c075165dcf3b

  • SHA256

    6b55a2a720d1745f6e13fec9b95aef219688eda0988c0fafdf489b562a5620e0

  • SHA512

    44c38ef4223310dafb599bb2ee3f8ce181f08645cb6fe794f1043bf14d46c361866da3d8d145cebe6a8217c0627b0bd5f76e0d24cf6247c2239a2b706c85669d

  • SSDEEP

    49152:uVAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:6ApQx5+Mc27g9tfoMv

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      6b55a2a720d1745f6e13fec9b95aef219688eda0988c0fafdf489b562a5620e0

    • Size

      2.0MB

    • MD5

      e94e14887ce2c4f0fa93dd9d69d7f42e

    • SHA1

      f1250282827448c76c96d3789e26c075165dcf3b

    • SHA256

      6b55a2a720d1745f6e13fec9b95aef219688eda0988c0fafdf489b562a5620e0

    • SHA512

      44c38ef4223310dafb599bb2ee3f8ce181f08645cb6fe794f1043bf14d46c361866da3d8d145cebe6a8217c0627b0bd5f76e0d24cf6247c2239a2b706c85669d

    • SSDEEP

      49152:uVAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:6ApQx5+Mc27g9tfoMv

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks