Overview

overview

8

Static

static

3

1029dcd01e...8a.exe

windows7-x64

7

1029dcd01e...8a.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1029dcd01ef706b3f69822871061d7f772f1c86697e7b8637f5ab39b45a3bb8a

  • Size

    2.0MB

  • Sample

    240903-1f72lsxfpq

  • MD5

    46cb066b6f2fc487aec581c597489f19

  • SHA1

    777cf265f9e4134d5af0778a44d320d543b711c1

  • SHA256

    1029dcd01ef706b3f69822871061d7f772f1c86697e7b8637f5ab39b45a3bb8a

  • SHA512

    1425ca8c51cb6907dcfe8d3a51a637054d6234966a424b9498e17f5f88b68217db1423012afe8a06afaae5869210121596f789c9cbad176bc4208fec2acd9a9a

  • SSDEEP

    49152:JVAbwKJZfirDD3z7rIfNIhwMyJYUJb1kT2:/AJjsDD3DQN4w9JYU/M2

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      1029dcd01ef706b3f69822871061d7f772f1c86697e7b8637f5ab39b45a3bb8a

    • Size

      2.0MB

    • MD5

      46cb066b6f2fc487aec581c597489f19

    • SHA1

      777cf265f9e4134d5af0778a44d320d543b711c1

    • SHA256

      1029dcd01ef706b3f69822871061d7f772f1c86697e7b8637f5ab39b45a3bb8a

    • SHA512

      1425ca8c51cb6907dcfe8d3a51a637054d6234966a424b9498e17f5f88b68217db1423012afe8a06afaae5869210121596f789c9cbad176bc4208fec2acd9a9a

    • SSDEEP

      49152:JVAbwKJZfirDD3z7rIfNIhwMyJYUJb1kT2:/AJjsDD3DQN4w9JYU/M2

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks