Overview

overview

7

Static

static

3

265adc7906...6N.exe

windows7-x64

7

265adc7906...6N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    265adc7906c86911945cd891ed8688098bbc157b8aa2a326776426e71ee3c0d6N.exe

  • Size

    2.6MB

  • Sample

    241120-f4kwrswqgp

  • MD5

    80cb880b7638b1f14b68b5b776209a90

  • SHA1

    80a8d553738e50ed728333cc366949e2091693ae

  • SHA256

    265adc7906c86911945cd891ed8688098bbc157b8aa2a326776426e71ee3c0d6

  • SHA512

    33541daa4bd184316b8eb3a175a0c129fbed19256d3ee109c3b77bbc4ad23cff57c2b6f4c82b4745821f3390c8ae1ae0e0b6af0603a0bf27d426b1b15754f3d9

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBYB/bSq:sxX7QnxrloE5dpUpzbV

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      265adc7906c86911945cd891ed8688098bbc157b8aa2a326776426e71ee3c0d6N.exe

    • Size

      2.6MB

    • MD5

      80cb880b7638b1f14b68b5b776209a90

    • SHA1

      80a8d553738e50ed728333cc366949e2091693ae

    • SHA256

      265adc7906c86911945cd891ed8688098bbc157b8aa2a326776426e71ee3c0d6

    • SHA512

      33541daa4bd184316b8eb3a175a0c129fbed19256d3ee109c3b77bbc4ad23cff57c2b6f4c82b4745821f3390c8ae1ae0e0b6af0603a0bf27d426b1b15754f3d9

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBYB/bSq:sxX7QnxrloE5dpUpzbV

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks