Analysis
-
max time kernel
9s -
max time network
10s -
platform
windows7_x64 -
resource
win7v20210410 -
submitted
23-04-2021 09:34
General
-
Target
a798b09ca056657bb97434edf659394d.exe
-
Size
1.9MB
-
MD5
a798b09ca056657bb97434edf659394d
-
SHA1
143280fa164815f73c3c89687e3711f3a3128596
-
SHA256
2ff619a4b0c109117b73ec22b00cbbbf1c09fe1d8fcedffb4929d07600ad2dbe
-
SHA512
b8c5928f68aff230547c9b3b39d511cca4a30649b792dcd74ba8bfaff8ddf635c571a7d9396a0a75f930fb08fccd3a96ef24c86df11e56d66f90780ce35b0069
Score
7/10
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious behavior: EnumeratesProcesses 7 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\a798b09ca056657bb97434edf659394d.exe"C:\Users\Admin\AppData\Local\Temp\a798b09ca056657bb97434edf659394d.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
Network
MITRE ATT&CK Matrix ATT&CK v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/772-60-0x0000000075EF1000-0x0000000075EF3000-memory.dmpFilesize
8KB