Overview

overview

7

Static

static

3

Hotel 188.exe

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Hotel 188.exe

  • Size

    128.7MB

  • Sample

    250330-xywjraxmw6

  • MD5

    5565d72eb0a532b2ad44692496e015ec

  • SHA1

    14b308fdde0851d4e6a2d73398b3889d9edb8ee5

  • SHA256

    f4f0738507dfab15a04c21107d7ce81ad5147e7e477c8807d835d2eaa5234131

  • SHA512

    49a171b06573182734ff16833eb5a03d1c514df1a78c90ba437611b25691b8a06d91dbf7e8c1c4b2066d6d7c6443e07b662d0656eacb12784d76cbe4649237f7

  • SSDEEP

    3145728:SFxgYRPSC++6y9SduXBGC2qkmZ5dBD/LYTenCdOMAdcuXnS7nEXn:SFxxaC4y9XXBhlY6C6aH70

Score
7/10
discoverypyinstallerspywarestealer

Malware Config

Targets

    • Target

      Hotel 188.exe

    • Size

      128.7MB

    • MD5

      5565d72eb0a532b2ad44692496e015ec

    • SHA1

      14b308fdde0851d4e6a2d73398b3889d9edb8ee5

    • SHA256

      f4f0738507dfab15a04c21107d7ce81ad5147e7e477c8807d835d2eaa5234131

    • SHA512

      49a171b06573182734ff16833eb5a03d1c514df1a78c90ba437611b25691b8a06d91dbf7e8c1c4b2066d6d7c6443e07b662d0656eacb12784d76cbe4649237f7

    • SSDEEP

      3145728:SFxgYRPSC++6y9SduXBGC2qkmZ5dBD/LYTenCdOMAdcuXnS7nEXn:SFxxaC4y9XXBhlY6C6aH70

    Score
    7/10
    discoveryspywarestealer

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks