Overview

overview

7

Static

static

b1843967b9...6e.exe

windows7_x64

7

b1843967b9...6e.exe

windows10_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b1843967b94d29f088ec35143ad94e6e.exe

  • Size

    412KB

  • Sample

    200707-3xp4drna5a

  • MD5

    b1843967b94d29f088ec35143ad94e6e

  • SHA1

    013aa99862c45afe518018a4ca5d8b230f94d0da

  • SHA256

    12d8decff8e6285f7bf32161258817d35ebf684c9db5acb26aa79dd6c6e96960

  • SHA512

    1c3a083b48cc8329cee05aa3ac24aadee65e21626f965623fee8fc7779ecdaaeb7096cb7744712a3fccb4a1c9e6231c7b61fd0541e4eb4131a33d1cf14f09ad5

Score
7/10
discoveryspyware

Malware Config

Targets

    • Target

      b1843967b94d29f088ec35143ad94e6e.exe

    • Size

      412KB

    • MD5

      b1843967b94d29f088ec35143ad94e6e

    • SHA1

      013aa99862c45afe518018a4ca5d8b230f94d0da

    • SHA256

      12d8decff8e6285f7bf32161258817d35ebf684c9db5acb26aa79dd6c6e96960

    • SHA512

      1c3a083b48cc8329cee05aa3ac24aadee65e21626f965623fee8fc7779ecdaaeb7096cb7744712a3fccb4a1c9e6231c7b61fd0541e4eb4131a33d1cf14f09ad5

    Score
    7/10
    discoveryspyware

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spyware

    • Checks for installed software on the system

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Query Registry

1
T1012

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks