Overview

overview

7

Static

static

3

bc58ae4d5c...82.exe

windows7-x64

7

bc58ae4d5c...82.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bc58ae4d5c70da980c248176df66ca9279452e266a400932e58ec879a62e8082

  • Size

    2.6MB

  • Sample

    241120-dlzabstqgq

  • MD5

    16a5e3bf0cce4d68f27f85ae299e04e6

  • SHA1

    6275583c2b419387e870e1faf185973cfb272942

  • SHA256

    bc58ae4d5c70da980c248176df66ca9279452e266a400932e58ec879a62e8082

  • SHA512

    c2c1c8a221c555def6b2ea53cd92178bc23904843fc770561525a111730c04dacc1e32beaf771b70e8c641e96c0fab5453b88a19ab85006242d979bb6201dc14

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB5B/bS:sxX7QnxrloE5dpUpKb

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      bc58ae4d5c70da980c248176df66ca9279452e266a400932e58ec879a62e8082

    • Size

      2.6MB

    • MD5

      16a5e3bf0cce4d68f27f85ae299e04e6

    • SHA1

      6275583c2b419387e870e1faf185973cfb272942

    • SHA256

      bc58ae4d5c70da980c248176df66ca9279452e266a400932e58ec879a62e8082

    • SHA512

      c2c1c8a221c555def6b2ea53cd92178bc23904843fc770561525a111730c04dacc1e32beaf771b70e8c641e96c0fab5453b88a19ab85006242d979bb6201dc14

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB5B/bS:sxX7QnxrloE5dpUpKb

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks