Overview

overview

7

Static

static

3

d1b62e8c2e...4a.exe

windows7-x64

7

d1b62e8c2e...4a.exe

windows10-2004-x64

4

Sharing

Copy URL Twitter E-mail

General

  • Target

    d1b62e8c2e89331c505a766269592dc8cdc95c50182377e5a1674e791abd524a

  • Size

    1.8MB

  • Sample

    240820-pp7aws1gqc

  • MD5

    3b41c01d3c4673d69e54d8e4b7bc1e07

  • SHA1

    8b54b28ac3184c3c43e8363bbd32dc6e4124d0a5

  • SHA256

    d1b62e8c2e89331c505a766269592dc8cdc95c50182377e5a1674e791abd524a

  • SHA512

    50b79492a163c8d56a0e018449d934d55031c971b334dfcfafbbbbf57de48b4f6391ff43fa342ee3292b38c6fbd0a179ece6d198afae75b79df67943f77d4211

  • SSDEEP

    49152:Nx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAHDmg27RnWGj:NvbjVkjjCAzJOD527BWG

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      d1b62e8c2e89331c505a766269592dc8cdc95c50182377e5a1674e791abd524a

    • Size

      1.8MB

    • MD5

      3b41c01d3c4673d69e54d8e4b7bc1e07

    • SHA1

      8b54b28ac3184c3c43e8363bbd32dc6e4124d0a5

    • SHA256

      d1b62e8c2e89331c505a766269592dc8cdc95c50182377e5a1674e791abd524a

    • SHA512

      50b79492a163c8d56a0e018449d934d55031c971b334dfcfafbbbbf57de48b4f6391ff43fa342ee3292b38c6fbd0a179ece6d198afae75b79df67943f77d4211

    • SSDEEP

      49152:Nx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAHDmg27RnWGj:NvbjVkjjCAzJOD527BWG

    Score
    7/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks