Overview

overview

8

Static

static

3

cf44098105...98.exe

windows7-x64

7

cf44098105...98.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    cf44098105f2f61c3b1e3589f52d28fc2f52537d74480afc649dbb2621474298

  • Size

    2.0MB

  • Sample

    240826-bcjr6sxdmq

  • MD5

    4e7e93305dce2e2413996310401f049c

  • SHA1

    1f4cf694215bb527fc2f3e826e39c34c38e3ae2b

  • SHA256

    cf44098105f2f61c3b1e3589f52d28fc2f52537d74480afc649dbb2621474298

  • SHA512

    208dd68d7aef7170b4f8d0d35f0cec7e13d7c69f2782183669acaca4a5011f18ac92bb9bdbe9b6a1f89cd39a12673ec98e9c97b880e0d7de05749a392b9cd5e0

  • SSDEEP

    49152:pVAbwUQUFD1VR+zbTPDyoW53zJJfvRCYd60p9e9bldMi:fACQZGbo1HRCYd6b9x+

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      cf44098105f2f61c3b1e3589f52d28fc2f52537d74480afc649dbb2621474298

    • Size

      2.0MB

    • MD5

      4e7e93305dce2e2413996310401f049c

    • SHA1

      1f4cf694215bb527fc2f3e826e39c34c38e3ae2b

    • SHA256

      cf44098105f2f61c3b1e3589f52d28fc2f52537d74480afc649dbb2621474298

    • SHA512

      208dd68d7aef7170b4f8d0d35f0cec7e13d7c69f2782183669acaca4a5011f18ac92bb9bdbe9b6a1f89cd39a12673ec98e9c97b880e0d7de05749a392b9cd5e0

    • SSDEEP

      49152:pVAbwUQUFD1VR+zbTPDyoW53zJJfvRCYd60p9e9bldMi:fACQZGbo1HRCYd6b9x+

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks