Overview

overview

7

Static

static

3

9cc9594972...0N.exe

windows7-x64

7

9cc9594972...0N.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    9cc9594972921e2f55b915df875bbc30N.exe

  • Size

    362KB

  • Sample

    240822-cyqnaaxgkm

  • MD5

    9cc9594972921e2f55b915df875bbc30

  • SHA1

    1cb13e7a7a21d80105a8f8453c2d5dc1e1f1c2e7

  • SHA256

    ec68def19c4646e96030d658ffafb28b3e48b947e8a67b266ad51b54109cb1a8

  • SHA512

    1dbdb2c6ed8c36fa843674c783b41c1105ca2d8d1bdadc6b8cdfb645b35c70ce29b5e8e778cf5953d23601eabe9fe7f1e2a24cf5a69f05a6174880cc4ae9598a

  • SSDEEP

    6144:oGHGRpO9p1om9+xs3NBB3i7T0KypIAS9atSHfeinci24n7DV:oGHasii9Bs/6TSatSHfeinLVn/V

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      9cc9594972921e2f55b915df875bbc30N.exe

    • Size

      362KB

    • MD5

      9cc9594972921e2f55b915df875bbc30

    • SHA1

      1cb13e7a7a21d80105a8f8453c2d5dc1e1f1c2e7

    • SHA256

      ec68def19c4646e96030d658ffafb28b3e48b947e8a67b266ad51b54109cb1a8

    • SHA512

      1dbdb2c6ed8c36fa843674c783b41c1105ca2d8d1bdadc6b8cdfb645b35c70ce29b5e8e778cf5953d23601eabe9fe7f1e2a24cf5a69f05a6174880cc4ae9598a

    • SSDEEP

      6144:oGHGRpO9p1om9+xs3NBB3i7T0KypIAS9atSHfeinci24n7DV:oGHasii9Bs/6TSatSHfeinLVn/V

    Score
    7/10
    discoverypersistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks