Overview

overview

7

Static

static

3

7a02eaf503...e8.exe

windows7-x64

7

7a02eaf503...e8.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7a02eaf5031dd5d10d7335e9c3bbdc5180df18bde8096a6d850bc5479e10c4e8.exe

  • Size

    935KB

  • Sample

    241121-mdme8ssalq

  • MD5

    57f9bb6f6210f8330b5b0eeab8e9b9a4

  • SHA1

    2ee1103a09c57cc2caf7ea9e4f5b309b0db0f129

  • SHA256

    7a02eaf5031dd5d10d7335e9c3bbdc5180df18bde8096a6d850bc5479e10c4e8

  • SHA512

    2eed2a53aa6eb185b1f069b5a8f05deb1914d1be0902ee89ff2a1391bcbace2e4afc446eeea196a555f46b6d8e9e22852761c5a405594f1644094abb947db62f

  • SSDEEP

    12288:8uPUTLYcAaUMhUhLupXshh1PEd5hOo1cNM3iSjJpf5HGQ:8uPmLDUMihIXCE5roM3iSjz5H1

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      7a02eaf5031dd5d10d7335e9c3bbdc5180df18bde8096a6d850bc5479e10c4e8.exe

    • Size

      935KB

    • MD5

      57f9bb6f6210f8330b5b0eeab8e9b9a4

    • SHA1

      2ee1103a09c57cc2caf7ea9e4f5b309b0db0f129

    • SHA256

      7a02eaf5031dd5d10d7335e9c3bbdc5180df18bde8096a6d850bc5479e10c4e8

    • SHA512

      2eed2a53aa6eb185b1f069b5a8f05deb1914d1be0902ee89ff2a1391bcbace2e4afc446eeea196a555f46b6d8e9e22852761c5a405594f1644094abb947db62f

    • SSDEEP

      12288:8uPUTLYcAaUMhUhLupXshh1PEd5hOo1cNM3iSjJpf5HGQ:8uPmLDUMihIXCE5roM3iSjz5H1

    Score
    7/10
    discoverypersistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks