Overview

overview

7

Static

static

3

06ecb52fc2...6N.exe

windows7-x64

7

06ecb52fc2...6N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06ecb52fc2855a23acf24e0adec642cffb60f04ae59d5880b9bf6c88f4da5bb6N

  • Size

    2.6MB

  • Sample

    240930-s64swatakj

  • MD5

    43f9894b0ad072aa3496e91d08ea1da0

  • SHA1

    526c02bc364700868e1b53dadc488eabc8027b22

  • SHA256

    06ecb52fc2855a23acf24e0adec642cffb60f04ae59d5880b9bf6c88f4da5bb6

  • SHA512

    b426d7b4ea715bb6b163a6f812331c3990e4d9c493df52d173b6b25c13d3d9569208690c88dcde42ba09208bd5ca45dd084eb828285daeaac7645af99e09b787

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bS:sxX7QnxrloE5dpUpJb

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      06ecb52fc2855a23acf24e0adec642cffb60f04ae59d5880b9bf6c88f4da5bb6N

    • Size

      2.6MB

    • MD5

      43f9894b0ad072aa3496e91d08ea1da0

    • SHA1

      526c02bc364700868e1b53dadc488eabc8027b22

    • SHA256

      06ecb52fc2855a23acf24e0adec642cffb60f04ae59d5880b9bf6c88f4da5bb6

    • SHA512

      b426d7b4ea715bb6b163a6f812331c3990e4d9c493df52d173b6b25c13d3d9569208690c88dcde42ba09208bd5ca45dd084eb828285daeaac7645af99e09b787

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bS:sxX7QnxrloE5dpUpJb

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks