Overview
overview
8Static
static
0093b3e67f...d7.exe
windows7_x64
80093b3e67f...d7.exe
windows10_x64
806f3992479...6d.exe
windows7_x64
106f3992479...6d.exe
windows10_x64
14690e24ad2...ad.exe
windows7_x64
14690e24ad2...ad.exe
windows10_x64
16d9db6ba26...24.exe
windows7_x64
76d9db6ba26...24.exe
windows10_x64
79c47fe6c8d...3e.exe
windows7_x64
89c47fe6c8d...3e.exe
windows10_x64
8a1db42d46f...2a.exe
windows7_x64
1a1db42d46f...2a.exe
windows10_x64
1a798b09ca0...4d.exe
windows7_x64
7a798b09ca0...4d.exe
windows10_x64
7b4556fe3a6...34.exe
windows7_x64
7b4556fe3a6...34.exe
windows10_x64
7c8b952f70a...74.exe
windows7_x64
1c8b952f70a...74.exe
windows10_x64
1f35818a585...3c.exe
windows7_x64
1f35818a585...3c.exe
windows10_x64
1Analysis
-
max time kernel
24s -
max time network
114s -
platform
windows10_x64 -
resource
win10v20210410 -
submitted
23-04-2021 09:34
Static task
static1
Behavioral task
behavioral1
Sample
0093b3e67f9ac01a1b5ebedb7046a8e881bc403892288fe531c03018e41401d7.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
0093b3e67f9ac01a1b5ebedb7046a8e881bc403892288fe531c03018e41401d7.exe
Resource
win10v20210408
Behavioral task
behavioral3
Sample
06f39924792712f3db4454d68315f99518463d12fd5e1256888edc3f73ec9a6d.exe
Resource
win7v20210410
Behavioral task
behavioral4
Sample
06f39924792712f3db4454d68315f99518463d12fd5e1256888edc3f73ec9a6d.exe
Resource
win10v20210410
Behavioral task
behavioral5
Sample
4690e24ad2ebfc89565f5ddc0b86e1a8f7f570f41e1b5dcab3787e8d8ef025ad.exe
Resource
win7v20210408
Behavioral task
behavioral6
Sample
4690e24ad2ebfc89565f5ddc0b86e1a8f7f570f41e1b5dcab3787e8d8ef025ad.exe
Resource
win10v20210410
Behavioral task
behavioral7
Sample
6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe
Resource
win7v20210408
Behavioral task
behavioral8
Sample
6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe
Resource
win10v20210410
Behavioral task
behavioral9
Sample
9c47fe6c8dbedae7d4f92d185d56509f0932e74a5ed9d3a28a4789461968f03e.exe
Resource
win7v20210408
Behavioral task
behavioral10
Sample
9c47fe6c8dbedae7d4f92d185d56509f0932e74a5ed9d3a28a4789461968f03e.exe
Resource
win10v20210410
Behavioral task
behavioral11
Sample
a1db42d46f08b66f80d31f85c0a2ec932da4fca72247eacb0574d391ddd3162a.exe
Resource
win7v20210410
Behavioral task
behavioral12
Sample
a1db42d46f08b66f80d31f85c0a2ec932da4fca72247eacb0574d391ddd3162a.exe
Resource
win10v20210408
Behavioral task
behavioral13
Sample
a798b09ca056657bb97434edf659394d.exe
Resource
win7v20210410
Behavioral task
behavioral14
Sample
a798b09ca056657bb97434edf659394d.exe
Resource
win10v20210408
Behavioral task
behavioral15
Sample
b4556fe3a65fd59deebb705c66424a50a07ac077bcff31cae040ea2f5a4f0734.exe
Resource
win7v20210410
Behavioral task
behavioral16
Sample
b4556fe3a65fd59deebb705c66424a50a07ac077bcff31cae040ea2f5a4f0734.exe
Resource
win10v20210408
Behavioral task
behavioral17
Sample
c8b952f70a8dea0a32c18cf42627c2b8059eb66b1bc3a019a21acf4c9f901d74.exe
Resource
win7v20210410
Behavioral task
behavioral18
Sample
c8b952f70a8dea0a32c18cf42627c2b8059eb66b1bc3a019a21acf4c9f901d74.exe
Resource
win10v20210410
Behavioral task
behavioral19
Sample
f35818a5851c9a037febbe09cdab1c046a76ce49a3d1af777e504f149144683c.exe
Resource
win7v20210408
Behavioral task
behavioral20
Sample
f35818a5851c9a037febbe09cdab1c046a76ce49a3d1af777e504f149144683c.exe
Resource
win10v20210410
General
-
Target
6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe
-
Size
1.9MB
-
MD5
5343e92d267c2afec4f27377cd95449a
-
SHA1
111277ed4286124854b781210a4e78b64e86288d
-
SHA256
6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524
-
SHA512
0a1ddc8ee8600443a7320513d00591173bfd40d6c538f585da84f6807499e04beef6f31a8ad01d5c8cebd67f60b084407ce563a00f9afdd42d37fd873b2f0e4f
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious behavior: EnumeratesProcesses 10 IoCs
Processes:
6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exepid process 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe 3680 6d9db6ba26b1730bf6910456b4a6c25821ddbfe8542bea456a3bbb924ea83524.exe