Overview

overview

8

Static

static

3

441b150382...b6.exe

windows7-x64

7

441b150382...b6.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    441b150382c49a517444c65df4ba98ad201e50f4b33812cecbc5688afe890fb6

  • Size

    2.0MB

  • Sample

    240823-adq27svdnf

  • MD5

    906947974836ce948fecf33ae2f87d04

  • SHA1

    5f5d65d8dbdad0d84a1e0a4192935c9b3d21259d

  • SHA256

    441b150382c49a517444c65df4ba98ad201e50f4b33812cecbc5688afe890fb6

  • SHA512

    8a159d927ed1094eefe30ae5db83f360d02193c74879c93462a7409ff67603c0476ee0c15964db3493770a2905931343b60a11abe7d6c943b8e8ae85b4382ee3

  • SSDEEP

    49152:2VAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:yApQx5+Mc27g9tfoMv

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      441b150382c49a517444c65df4ba98ad201e50f4b33812cecbc5688afe890fb6

    • Size

      2.0MB

    • MD5

      906947974836ce948fecf33ae2f87d04

    • SHA1

      5f5d65d8dbdad0d84a1e0a4192935c9b3d21259d

    • SHA256

      441b150382c49a517444c65df4ba98ad201e50f4b33812cecbc5688afe890fb6

    • SHA512

      8a159d927ed1094eefe30ae5db83f360d02193c74879c93462a7409ff67603c0476ee0c15964db3493770a2905931343b60a11abe7d6c943b8e8ae85b4382ee3

    • SSDEEP

      49152:2VAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:yApQx5+Mc27g9tfoMv

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks