Overview

overview

7

Static

static

3

e0e76a2acb...eN.exe

windows7-x64

7

e0e76a2acb...eN.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e0e76a2acbfc4a21df7eeafea1574aaf07e7bb595849dfb2fac5a84df370276eN

  • Size

    2.6MB

  • Sample

    241101-z6ktbstnc1

  • MD5

    3d3ea83b2b8f6d254c654505521506b0

  • SHA1

    a4480aae27dfb526384eb179b3896e6d2fada447

  • SHA256

    e0e76a2acbfc4a21df7eeafea1574aaf07e7bb595849dfb2fac5a84df370276e

  • SHA512

    639eeee85e8d6884a1d383f7808702b9d957b71e7914a2fbd3e976b30b61dec755adfde21505b030f53365aabcb1312d761f5ac3a26ed527dc2d6c917275a881

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bS:sxX7QnxrloE5dpUptb

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      e0e76a2acbfc4a21df7eeafea1574aaf07e7bb595849dfb2fac5a84df370276eN

    • Size

      2.6MB

    • MD5

      3d3ea83b2b8f6d254c654505521506b0

    • SHA1

      a4480aae27dfb526384eb179b3896e6d2fada447

    • SHA256

      e0e76a2acbfc4a21df7eeafea1574aaf07e7bb595849dfb2fac5a84df370276e

    • SHA512

      639eeee85e8d6884a1d383f7808702b9d957b71e7914a2fbd3e976b30b61dec755adfde21505b030f53365aabcb1312d761f5ac3a26ed527dc2d6c917275a881

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bS:sxX7QnxrloE5dpUptb

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks