Overview

overview

7

Static

static

3

b5c682c0a3...0N.exe

windows7-x64

7

b5c682c0a3...0N.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b5c682c0a3418a5e4ad3d68d8d06a629996a7be4fcf308344ea066a7fa1dc340N

  • Size

    2.6MB

  • Sample

    240929-z26j8s1bqn

  • MD5

    9d2678350474b54ca73733f2ec339050

  • SHA1

    29f3917288e0e458ff07a9d5e6f622f7accb5df1

  • SHA256

    b5c682c0a3418a5e4ad3d68d8d06a629996a7be4fcf308344ea066a7fa1dc340

  • SHA512

    b9c749ca6dc23b251ae1882291086579a74bad81833cb5dc918b4b8b92f354460ae7a6af9fd664fa2b3837f621e08c1168caa5145ffedbd9086083c44be654cb

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUpHb

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      b5c682c0a3418a5e4ad3d68d8d06a629996a7be4fcf308344ea066a7fa1dc340N

    • Size

      2.6MB

    • MD5

      9d2678350474b54ca73733f2ec339050

    • SHA1

      29f3917288e0e458ff07a9d5e6f622f7accb5df1

    • SHA256

      b5c682c0a3418a5e4ad3d68d8d06a629996a7be4fcf308344ea066a7fa1dc340

    • SHA512

      b9c749ca6dc23b251ae1882291086579a74bad81833cb5dc918b4b8b92f354460ae7a6af9fd664fa2b3837f621e08c1168caa5145ffedbd9086083c44be654cb

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUpHb

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks