Overview

overview

10

Static

static

3

41.exe

windows7-x64

10

41.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    41.exe

  • Size

    7.0MB

  • Sample

    241012-x74lqaxepe

  • MD5

    49d7ba824b7249c26927e8a086eb879b

  • SHA1

    51596a606413b95477c9f655c2dfad328a94baf0

  • SHA256

    a10386e4d53db8a045aedf7261adfbe05c0afd80a2550b7ad856cec3663cc66d

  • SHA512

    5a680efec855e7210d9a22111bdc8058c334dc343352c731ba7d2f617a33e501d1821455d58c1051d370b9f8511b8288f0c0b6b79e3f78fa76b62e6b9b0f9d94

  • SSDEEP

    49152:3tjeRpHpc4WLvHplR6mNwZ5bj/pZx2m3v/Ps8Mow1dCSzbL7YI4chxGuevH3nUk4:3QHy4g78kw

Score
10/10
cryptbotdiscoveryspywarestealer

Malware Config

Targets

    • Target

      41.exe

    • Size

      7.0MB

    • MD5

      49d7ba824b7249c26927e8a086eb879b

    • SHA1

      51596a606413b95477c9f655c2dfad328a94baf0

    • SHA256

      a10386e4d53db8a045aedf7261adfbe05c0afd80a2550b7ad856cec3663cc66d

    • SHA512

      5a680efec855e7210d9a22111bdc8058c334dc343352c731ba7d2f617a33e501d1821455d58c1051d370b9f8511b8288f0c0b6b79e3f78fa76b62e6b9b0f9d94

    • SSDEEP

      49152:3tjeRpHpc4WLvHplR6mNwZ5bj/pZx2m3v/Ps8Mow1dCSzbL7YI4chxGuevH3nUk4:3QHy4g78kw

    Score
    10/10
    cryptbotdiscoveryspywarestealer

    • CryptBot

      CryptBot is a C++ stealer distributed widely in bundle with other software.

      spywarestealercryptbot

    • Detects CryptBot payload

      CryptBot is a C++ stealer distributed widely in bundle with other software.

      spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks