Overview

overview

7

Static

static

3

f31fe0bb93...eN.exe

windows7-x64

7

f31fe0bb93...eN.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f31fe0bb93e38edaf9ba8f8e23fa2772459dfd227d775ade27c025305e0b482eN.exe

  • Size

    2.6MB

  • Sample

    241119-pcfbmswgjn

  • MD5

    f549b74ec08952e872728f78574688d0

  • SHA1

    643621ff913c697f418317c32c6754357781092e

  • SHA256

    f31fe0bb93e38edaf9ba8f8e23fa2772459dfd227d775ade27c025305e0b482e

  • SHA512

    fbf36eca07b7021705446f8bab04273bc4e780f2d08b92460bf46fc762865809c83c687b68d2249522f75cf4941203bc72990d3cfa49b4715ee09a7b9c3fe1a3

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSq:sxX7QnxrloE5dpUptbV

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      f31fe0bb93e38edaf9ba8f8e23fa2772459dfd227d775ade27c025305e0b482eN.exe

    • Size

      2.6MB

    • MD5

      f549b74ec08952e872728f78574688d0

    • SHA1

      643621ff913c697f418317c32c6754357781092e

    • SHA256

      f31fe0bb93e38edaf9ba8f8e23fa2772459dfd227d775ade27c025305e0b482e

    • SHA512

      fbf36eca07b7021705446f8bab04273bc4e780f2d08b92460bf46fc762865809c83c687b68d2249522f75cf4941203bc72990d3cfa49b4715ee09a7b9c3fe1a3

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSq:sxX7QnxrloE5dpUptbV

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks