Overview

overview

7

Static

static

3

142b88d69d...2N.exe

windows7-x64

7

142b88d69d...2N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    142b88d69d1f133447ba6d87c0138d591a9241a1ec5b952d7463eb9205450032N.exe

  • Size

    2.6MB

  • Sample

    241120-f5a3yssfpj

  • MD5

    5269a668a24af4644abde5c875624ab0

  • SHA1

    5ed479d2f3024c2a3ae04ad65037c62bf4b50eb9

  • SHA256

    142b88d69d1f133447ba6d87c0138d591a9241a1ec5b952d7463eb9205450032

  • SHA512

    ccb2011acd0d8aaa7a60bcc34e866ac0275f1ad97596e9acde3c540a248c9230f535b633482f1d588d96a6d986fe6cb92973998d1103aabbbdbdf1ccc2462a88

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bSq:sxX7QnxrloE5dpUpSbV

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      142b88d69d1f133447ba6d87c0138d591a9241a1ec5b952d7463eb9205450032N.exe

    • Size

      2.6MB

    • MD5

      5269a668a24af4644abde5c875624ab0

    • SHA1

      5ed479d2f3024c2a3ae04ad65037c62bf4b50eb9

    • SHA256

      142b88d69d1f133447ba6d87c0138d591a9241a1ec5b952d7463eb9205450032

    • SHA512

      ccb2011acd0d8aaa7a60bcc34e866ac0275f1ad97596e9acde3c540a248c9230f535b633482f1d588d96a6d986fe6cb92973998d1103aabbbdbdf1ccc2462a88

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bSq:sxX7QnxrloE5dpUpSbV

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks