Overview

overview

7

Static

static

3

39483dcced...9N.exe

windows7-x64

7

39483dcced...9N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    39483dccedf6b9d8a49f6ed8979adea12f338d1199bfa906366ee9449cdab8a9N.exe

  • Size

    3.4MB

  • Sample

    241119-rjfl4a1rdm

  • MD5

    db0b02629d030e233ca2aac36c1e6950

  • SHA1

    d53bbd959df4c897b1783b733cf77b50a4312753

  • SHA256

    39483dccedf6b9d8a49f6ed8979adea12f338d1199bfa906366ee9449cdab8a9

  • SHA512

    a658640fc13a6b4597ce9bc9c4d1612cb2d71e258c7b9a6a4dce8577cc8d0481a5274114dcffff13e439610f21eaea3a4a740c1af8aa09501d85c6454ce4364e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUp0bVz8eLFcz

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      39483dccedf6b9d8a49f6ed8979adea12f338d1199bfa906366ee9449cdab8a9N.exe

    • Size

      3.4MB

    • MD5

      db0b02629d030e233ca2aac36c1e6950

    • SHA1

      d53bbd959df4c897b1783b733cf77b50a4312753

    • SHA256

      39483dccedf6b9d8a49f6ed8979adea12f338d1199bfa906366ee9449cdab8a9

    • SHA512

      a658640fc13a6b4597ce9bc9c4d1612cb2d71e258c7b9a6a4dce8577cc8d0481a5274114dcffff13e439610f21eaea3a4a740c1af8aa09501d85c6454ce4364e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUp0bVz8eLFcz

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks