Overview

overview

7

Static

static

3

a53960252a...9c.exe

windows7-x64

7

a53960252a...9c.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a53960252a8b45bc21ee2af964738d74d18b20f1ceb956fe19a53d346764119c.exe

  • Size

    2.6MB

  • Sample

    241119-xhyzyazepa

  • MD5

    f1f98c824a75c11e6788282a26198834

  • SHA1

    807546d857ffb7e922a2d367bfb2224cb9d7de69

  • SHA256

    a53960252a8b45bc21ee2af964738d74d18b20f1ceb956fe19a53d346764119c

  • SHA512

    a2fcd8e0b7faf3b7718efa51d7f2fb40d8a0c8a67796d1df315b1b257b8d684f54ed4c48225005bc78555169b367f96eaef1f2191369e5f3ac3c154a41070011

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBJB/bSS:sxX7QnxrloE5dpUpGb9

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      a53960252a8b45bc21ee2af964738d74d18b20f1ceb956fe19a53d346764119c.exe

    • Size

      2.6MB

    • MD5

      f1f98c824a75c11e6788282a26198834

    • SHA1

      807546d857ffb7e922a2d367bfb2224cb9d7de69

    • SHA256

      a53960252a8b45bc21ee2af964738d74d18b20f1ceb956fe19a53d346764119c

    • SHA512

      a2fcd8e0b7faf3b7718efa51d7f2fb40d8a0c8a67796d1df315b1b257b8d684f54ed4c48225005bc78555169b367f96eaef1f2191369e5f3ac3c154a41070011

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBJB/bSS:sxX7QnxrloE5dpUpGb9

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks