Overview

overview

7

Static

static

3

e4c7c014ab...0N.exe

windows7-x64

7

e4c7c014ab...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e4c7c014abedb993e1031992ac92b1ce939a229a98dc4a4e265200fbfa8f5a70N

  • Size

    3.5MB

  • Sample

    240921-gs5bpsyblk

  • MD5

    554a11e9eaa69e131d24a180566ae580

  • SHA1

    cb016f3ab6da251465c6cf99a1d18b85747c8b90

  • SHA256

    e4c7c014abedb993e1031992ac92b1ce939a229a98dc4a4e265200fbfa8f5a70

  • SHA512

    6fd177a12442f52cbbb00a521f719cbcb041083794bbd0af5f03bf2ae8221ec2b95b80a985804b8e3c2636a07b330ffc2cd051f1891abd32d6e0ba79dd47363c

  • SSDEEP

    49152:jGExYI6bVyQTDGExYI6bVyQTdXpiMOXpiMOXpiMA:TZ6bVBZ6bV3pirpirpiZ

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      e4c7c014abedb993e1031992ac92b1ce939a229a98dc4a4e265200fbfa8f5a70N

    • Size

      3.5MB

    • MD5

      554a11e9eaa69e131d24a180566ae580

    • SHA1

      cb016f3ab6da251465c6cf99a1d18b85747c8b90

    • SHA256

      e4c7c014abedb993e1031992ac92b1ce939a229a98dc4a4e265200fbfa8f5a70

    • SHA512

      6fd177a12442f52cbbb00a521f719cbcb041083794bbd0af5f03bf2ae8221ec2b95b80a985804b8e3c2636a07b330ffc2cd051f1891abd32d6e0ba79dd47363c

    • SSDEEP

      49152:jGExYI6bVyQTDGExYI6bVyQTdXpiMOXpiMOXpiMA:TZ6bVBZ6bV3pirpirpiZ

    Score
    7/10
    discoverypersistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks