Overview

overview

8

Static

static

3

5fa9e547f8...01.exe

windows7-x64

7

5fa9e547f8...01.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    5fa9e547f8368ff2f6cd62d92fb6c17d006bb017978d48e0bacea74ae6e13401

  • Size

    3.1MB

  • Sample

    240825-3ejzhashrl

  • MD5

    3f188aaff54dfc8dc69d1e62f9b95984

  • SHA1

    8ed026d355e69346ba1a7abdf3c8e17f3159f8ce

  • SHA256

    5fa9e547f8368ff2f6cd62d92fb6c17d006bb017978d48e0bacea74ae6e13401

  • SHA512

    dd74420077f55cf352c440ffc34b2099b0cb2576818f632540cabe01d472b876257a0803bbaa1154bc7e5b49bdb23714a9cb179e0aafa053897d2e138862a40d

  • SSDEEP

    98304:DAcRTd/kggQSwydThBmnXodHG+z92I0xkZV8zDzSC:3RTFkg3SwyhsXoRG+zAkZCzDz/

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      5fa9e547f8368ff2f6cd62d92fb6c17d006bb017978d48e0bacea74ae6e13401

    • Size

      3.1MB

    • MD5

      3f188aaff54dfc8dc69d1e62f9b95984

    • SHA1

      8ed026d355e69346ba1a7abdf3c8e17f3159f8ce

    • SHA256

      5fa9e547f8368ff2f6cd62d92fb6c17d006bb017978d48e0bacea74ae6e13401

    • SHA512

      dd74420077f55cf352c440ffc34b2099b0cb2576818f632540cabe01d472b876257a0803bbaa1154bc7e5b49bdb23714a9cb179e0aafa053897d2e138862a40d

    • SSDEEP

      98304:DAcRTd/kggQSwydThBmnXodHG+z92I0xkZV8zDzSC:3RTFkg3SwyhsXoRG+zAkZCzDz/

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks