Overview

overview

7

Static

static

3

3e3e5bb4d5...2N.exe

windows7-x64

7

3e3e5bb4d5...2N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3e3e5bb4d57f73637517a045c1e380052b70874974a46131f18f5821423bd692N.exe

  • Size

    2.6MB

  • Sample

    241121-kmeqmszela

  • MD5

    f933d125440191af4707a83ee6ccb4b0

  • SHA1

    8c4cf664801f31da6669cc9f6c4956272dc6f6de

  • SHA256

    3e3e5bb4d57f73637517a045c1e380052b70874974a46131f18f5821423bd692

  • SHA512

    bc7eba982c70e7c1f9e3cb735f8f2e3e289353155c1d3b20a7a57cfb27b2a9fcd6c14e8c1196fbf74f284ba370ba0ea63e3f3e909276b6ad4c277075ba2c2812

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bS:sxX7QnxrloE5dpUp2b

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      3e3e5bb4d57f73637517a045c1e380052b70874974a46131f18f5821423bd692N.exe

    • Size

      2.6MB

    • MD5

      f933d125440191af4707a83ee6ccb4b0

    • SHA1

      8c4cf664801f31da6669cc9f6c4956272dc6f6de

    • SHA256

      3e3e5bb4d57f73637517a045c1e380052b70874974a46131f18f5821423bd692

    • SHA512

      bc7eba982c70e7c1f9e3cb735f8f2e3e289353155c1d3b20a7a57cfb27b2a9fcd6c14e8c1196fbf74f284ba370ba0ea63e3f3e909276b6ad4c277075ba2c2812

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bS:sxX7QnxrloE5dpUp2b

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks