Overview

overview

7

Static

static

3

2cff30974c...0N.exe

windows7-x64

7

2cff30974c...0N.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2cff30974cbfed458b842fec2826de80N.exe

  • Size

    272KB

  • Sample

    240818-pbzc5atard

  • MD5

    2cff30974cbfed458b842fec2826de80

  • SHA1

    492840b9185d717afa83af4fd1e265353b34eed6

  • SHA256

    14a67969b7ce4492dd2f353c5c613425461d980c759f8802b21b2674ecab0d72

  • SHA512

    52d29692d86f93aef6f9a072e9290b71ee7b6ccfd0cb71d64733b0ec8bca88225f5a88ff0b450be7e9e3dc230417c8b20d659aa7a72bbcf44483364e4030aa1e

  • SSDEEP

    6144:GjYKlAhUBVB3pQOYZqTsQi54hST1lvvPmE1jgzxLlF7zwe+3p:GjYRm7QOUqT/i54o1BXm6OMT

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      2cff30974cbfed458b842fec2826de80N.exe

    • Size

      272KB

    • MD5

      2cff30974cbfed458b842fec2826de80

    • SHA1

      492840b9185d717afa83af4fd1e265353b34eed6

    • SHA256

      14a67969b7ce4492dd2f353c5c613425461d980c759f8802b21b2674ecab0d72

    • SHA512

      52d29692d86f93aef6f9a072e9290b71ee7b6ccfd0cb71d64733b0ec8bca88225f5a88ff0b450be7e9e3dc230417c8b20d659aa7a72bbcf44483364e4030aa1e

    • SSDEEP

      6144:GjYKlAhUBVB3pQOYZqTsQi54hST1lvvPmE1jgzxLlF7zwe+3p:GjYRm7QOUqT/i54o1BXm6OMT

    Score
    7/10
    discoverypersistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks