Overview

overview

7

Static

static

3

e40686ca24...e6.exe

windows7-x64

7

e40686ca24...e6.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e40686ca24a07a9dc2dd785a031df1d41587f8d021478811b11c276eeeff33e6.exe

  • Size

    3.1MB

  • Sample

    241119-wjyj5atqbn

  • MD5

    45d2a13e7a2b3e6b4f6da1d0d42fb617

  • SHA1

    c8e87c8ba8a8f900594e466e316a1174429e5f95

  • SHA256

    e40686ca24a07a9dc2dd785a031df1d41587f8d021478811b11c276eeeff33e6

  • SHA512

    30aa10872d0da4c7f7871075ec8bbbf2b42a359f7444d592564a34e930a10cd8fa7b6ab7d0361a205dff757f375d7e1b3a8d4231febffa3e88e327e7587d97fa

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bSqz8b6LNXJqIk:sxX7QnxrloE5dpUpvbVz8eLFcl

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      e40686ca24a07a9dc2dd785a031df1d41587f8d021478811b11c276eeeff33e6.exe

    • Size

      3.1MB

    • MD5

      45d2a13e7a2b3e6b4f6da1d0d42fb617

    • SHA1

      c8e87c8ba8a8f900594e466e316a1174429e5f95

    • SHA256

      e40686ca24a07a9dc2dd785a031df1d41587f8d021478811b11c276eeeff33e6

    • SHA512

      30aa10872d0da4c7f7871075ec8bbbf2b42a359f7444d592564a34e930a10cd8fa7b6ab7d0361a205dff757f375d7e1b3a8d4231febffa3e88e327e7587d97fa

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bSqz8b6LNXJqIk:sxX7QnxrloE5dpUpvbVz8eLFcl

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks