Analysis
-
max time kernel
122s -
max time network
125s -
platform
windows7_x64 -
resource
win7v20210410 -
submitted
23-04-2021 09:34
General
-
Target
b4556fe3a65fd59deebb705c66424a50a07ac077bcff31cae040ea2f5a4f0734.exe
-
Size
2.8MB
-
MD5
dcef36616a7b5c2be007d9f47b00d91d
-
SHA1
2ebbf52f7b7fc44578a2cb34bb04f80bbd3a0229
-
SHA256
b4556fe3a65fd59deebb705c66424a50a07ac077bcff31cae040ea2f5a4f0734
-
SHA512
9a164d9a7cfad239041ed15fb601dfb13acc0ae2bbccd446bfb3bb1250b5d38bce8e0c037dc26740d92f3c1ee1ebcdc7144f89ae76242898015640f1a76446b2
Score
7/10
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious behavior: EnumeratesProcesses 7 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\b4556fe3a65fd59deebb705c66424a50a07ac077bcff31cae040ea2f5a4f0734.exe"C:\Users\Admin\AppData\Local\Temp\b4556fe3a65fd59deebb705c66424a50a07ac077bcff31cae040ea2f5a4f0734.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
Network
MITRE ATT&CK Matrix ATT&CK v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/296-60-0x00000000757E1000-0x00000000757E3000-memory.dmpFilesize
8KB