Overview

overview

7

Static

static

3

c3de3d25b5...9b.exe

windows7-x64

7

c3de3d25b5...9b.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4008bc6c58a09d901019afb2d70d6af1.zip

  • Size

    44KB

  • Sample

    240903-xfvvhavend

  • MD5

    f10a5eef6828a07feb031f25951a3558

  • SHA1

    a9eb9efe0aa99bc38ca9b1d0ad078fa33eb9cb0f

  • SHA256

    50d55e07cfe3857fb23be1d76c3389054a3a8a723f43380505241622eba3a3d0

  • SHA512

    c02f042504c0e4f71d6a7205d40e64430f06979d40238c3828d3747463af59b471dd57e8e832ae02541781b49719123dafebdeb2bc5178994837c24dce58046e

  • SSDEEP

    768:R5pqJMha9QRJWNN5BKKlm56OUF9KE0ds7B/oPIiZ1LkMUwmKnBg:RDqJX9eJmbEv69UIBAPIiDLkBwvK

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      c3de3d25b59fa179eae51b716ffe18645b57a9fce2eed6124d08fa5bb14eca9b

    • Size

      73KB

    • MD5

      4008bc6c58a09d901019afb2d70d6af1

    • SHA1

      25e5596bc9499893e30b61c957d56c52109bfc1a

    • SHA256

      c3de3d25b59fa179eae51b716ffe18645b57a9fce2eed6124d08fa5bb14eca9b

    • SHA512

      2e9af1140d082dd0b4cbd0c071bb40755224523b92ae4dedd329808081262aab6d69b7e907370c56eaff1a9abf52c588ffea5984619747ba3b722b1d020d7311

    • SSDEEP

      1536:p4q8Q1xZtffrb8sjPFNhTYsFFrzckH2fmitDuK8wFxHK6FrHUM/g:qKtfDwsjPThTYszDH2fPxH/FoZ

    Score
    7/10
    discoveryspywarestealer

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks