Overview

overview

7

Static

static

3

SteamAssistant.exe

windows7-x64

7

SteamAssistant.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SteamAssistant.exe

  • Size

    15.2MB

  • Sample

    241222-l3ftbatqgk

  • MD5

    799301eb5bc9a6f5d8cbd068a2bced14

  • SHA1

    c03cf1220328c6de58d32bdedcb6d46acf3aacd2

  • SHA256

    61a3ec8d25f2176c42431f97eeea74c270f70cb70c779b787f200f83c38a5f74

  • SHA512

    8f2ff4d8f140bb068999bb4c5afb98013e59974703824e2e2401006d68f6e494981090ef8ac0e5030e5d85f42b75940c0e3139c6b66c92cc5706f1234302324f

  • SSDEEP

    393216:5cjNizHVEWmBiZnS/2cioK1+TtIiW0VJWLlW30:7zHVcoj1QtI2Ei

Score
7/10
steamdiscoveryphishingpyinstaller

Malware Config

Targets

    • Target

      SteamAssistant.exe

    • Size

      15.2MB

    • MD5

      799301eb5bc9a6f5d8cbd068a2bced14

    • SHA1

      c03cf1220328c6de58d32bdedcb6d46acf3aacd2

    • SHA256

      61a3ec8d25f2176c42431f97eeea74c270f70cb70c779b787f200f83c38a5f74

    • SHA512

      8f2ff4d8f140bb068999bb4c5afb98013e59974703824e2e2401006d68f6e494981090ef8ac0e5030e5d85f42b75940c0e3139c6b66c92cc5706f1234302324f

    • SSDEEP

      393216:5cjNizHVEWmBiZnS/2cioK1+TtIiW0VJWLlW30:7zHVcoj1QtI2Ei

    Score
    7/10
    steamdiscoveryphishing

    • Loads dropped DLL

    • Detected potential entity reuse from brand STEAM.

      phishingsteam
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks