Overview

overview

8

Static

static

3

f6fa37f800...f0.exe

windows7-x64

7

f6fa37f800...f0.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    f6fa37f800c8ac08c2276cbcba3c1ad2897cdb902c84950b4a0b91c7369e48f0

  • Size

    3.1MB

  • Sample

    240825-2ysv3szepb

  • MD5

    27a0c2e2e26846390dfb3a693dd9551d

  • SHA1

    5715ca496dab8a6b7f0e768550453ac936767d5b

  • SHA256

    f6fa37f800c8ac08c2276cbcba3c1ad2897cdb902c84950b4a0b91c7369e48f0

  • SHA512

    b30eeb7d19267359d8b30cfe104fa50bd885a73ef755b28883d34e8106978d506583bef9108670903ca12830769bce15f194b2b7150d92c5045f1014e6b8ac2e

  • SSDEEP

    98304:AAcRTd/kggQSwydThBmnXodHG+z92I0xkZV8zDzSC:aRTFkg3SwyhsXoRG+zAkZCzDz/

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      f6fa37f800c8ac08c2276cbcba3c1ad2897cdb902c84950b4a0b91c7369e48f0

    • Size

      3.1MB

    • MD5

      27a0c2e2e26846390dfb3a693dd9551d

    • SHA1

      5715ca496dab8a6b7f0e768550453ac936767d5b

    • SHA256

      f6fa37f800c8ac08c2276cbcba3c1ad2897cdb902c84950b4a0b91c7369e48f0

    • SHA512

      b30eeb7d19267359d8b30cfe104fa50bd885a73ef755b28883d34e8106978d506583bef9108670903ca12830769bce15f194b2b7150d92c5045f1014e6b8ac2e

    • SSDEEP

      98304:AAcRTd/kggQSwydThBmnXodHG+z92I0xkZV8zDzSC:aRTFkg3SwyhsXoRG+zAkZCzDz/

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks