Overview

overview

9

Static

static

5

file.exe

windows7-x64

9

file.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.exe

  • Size

    1.2MB

  • Sample

    240822-27dshssgkg

  • MD5

    3899b1e6033c950bb918be8c40dbf845

  • SHA1

    98e334afc23011df094613b517dcf473d6c9eab1

  • SHA256

    18608dcbc0f9d3cc43bebd421483cdf002bcebd0ca14c70a72c5c1237417c8fb

  • SHA512

    e4e51dc41cc15e899b3b4feecef4f2471813d0deda8d0bad62080cf8ddd639e47e4a2b1ec962a056f0668e796a277a89893428dd19b28a2ae42b44dc57f58537

  • SSDEEP

    24576:OqDEvCTbMWu7rQYlBQcBiT6rprG8agCDENuT0jOdwN:OTvC/MTQYxsWR7agCDF0j

Score
9/10
credential_accessdiscoverystealer

Malware Config

Targets

    • Target

      file.exe

    • Size

      1.2MB

    • MD5

      3899b1e6033c950bb918be8c40dbf845

    • SHA1

      98e334afc23011df094613b517dcf473d6c9eab1

    • SHA256

      18608dcbc0f9d3cc43bebd421483cdf002bcebd0ca14c70a72c5c1237417c8fb

    • SHA512

      e4e51dc41cc15e899b3b4feecef4f2471813d0deda8d0bad62080cf8ddd639e47e4a2b1ec962a056f0668e796a277a89893428dd19b28a2ae42b44dc57f58537

    • SSDEEP

      24576:OqDEvCTbMWu7rQYlBQcBiT6rprG8agCDENuT0jOdwN:OTvC/MTQYxsWR7agCDF0j

    Score
    9/10
    credential_accessdiscoverystealer

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

      credential_accessstealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks