Overview

overview

8

Static

static

1

e8ab071dc8...bN.exe

windows7-x64

8

e8ab071dc8...bN.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    e8ab071dc8183f18de7bb1362b31e173550eeb0c4635ad679050353d18d90a9bN

  • Size

    2.5MB

  • Sample

    241009-cyhyfavbpj

  • MD5

    3fbcb20da1f41b354cdc4926bdbf6ee0

  • SHA1

    3f7518642e0f6345cfcd9d976ad3c4d5bf16d65e

  • SHA256

    e8ab071dc8183f18de7bb1362b31e173550eeb0c4635ad679050353d18d90a9b

  • SHA512

    18294698914780c5bc998cd2e8075b480cb60c6d15789ca5b7c0f7901583090ec9db6827eeb4dbc70cddad192b941872749c87b069d65caa7113cc718007e560

  • SSDEEP

    49152:E2IRVeS7o0Z9D4rQsDXDG/yTXTXqJQ1HvAsWtL:E2U8rrXDG/ZJQ8

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      e8ab071dc8183f18de7bb1362b31e173550eeb0c4635ad679050353d18d90a9bN

    • Size

      2.5MB

    • MD5

      3fbcb20da1f41b354cdc4926bdbf6ee0

    • SHA1

      3f7518642e0f6345cfcd9d976ad3c4d5bf16d65e

    • SHA256

      e8ab071dc8183f18de7bb1362b31e173550eeb0c4635ad679050353d18d90a9b

    • SHA512

      18294698914780c5bc998cd2e8075b480cb60c6d15789ca5b7c0f7901583090ec9db6827eeb4dbc70cddad192b941872749c87b069d65caa7113cc718007e560

    • SSDEEP

      49152:E2IRVeS7o0Z9D4rQsDXDG/yTXTXqJQ1HvAsWtL:E2U8rrXDG/ZJQ8

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks