Overview

overview

9

Static

static

1

merzlota.cfg

windows10-1703-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    merzlota.cfg

  • Size

    71KB

  • Sample

    240906-t5svnawhln

  • MD5

    eafdf71c7c176478625c8868d7194f94

  • SHA1

    907f03255453f0d37f0ed1c77b6d45707f96ed91

  • SHA256

    fa658997bc9c3c60a24a27e8ab2de0c74087cce45980ffe0d28d51ce4f054f4e

  • SHA512

    b8a68480920db44edef7cb316984534686dbbc9a912000fdc6c50a4fa368ff0eee44da1fac6054aae1e8ca49c32c9769d6cf8bb02fa60ec7153c3750f2f2c54d

  • SSDEEP

    48:H4AuvaRNDOl9khdJzFFFFFFFFFFaQd0FBv0d0FBv5d0FBv6dlNbzd0FBv5d0FBvZ:O

Score
9/10
credential_accessdiscoverystealer

Malware Config

Targets

    • Target

      merzlota.cfg

    • Size

      71KB

    • MD5

      eafdf71c7c176478625c8868d7194f94

    • SHA1

      907f03255453f0d37f0ed1c77b6d45707f96ed91

    • SHA256

      fa658997bc9c3c60a24a27e8ab2de0c74087cce45980ffe0d28d51ce4f054f4e

    • SHA512

      b8a68480920db44edef7cb316984534686dbbc9a912000fdc6c50a4fa368ff0eee44da1fac6054aae1e8ca49c32c9769d6cf8bb02fa60ec7153c3750f2f2c54d

    • SSDEEP

      48:H4AuvaRNDOl9khdJzFFFFFFFFFFaQd0FBv0d0FBv5d0FBv6dlNbzd0FBv5d0FBvZ:O

    Score
    9/10
    credential_accessdiscoverystealer

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

      credential_accessstealer
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks