Analysis
-
max time kernel
8s -
max time network
16s -
platform
windows7_x64 -
resource
win7v20210408 -
submitted
24-08-2021 17:08
Static task
static1
Behavioral task
behavioral1
Sample
a310logger.exe
Resource
win7v20210408
windows7_x64
0 signatures
0 seconds
General
-
Target
a310logger.exe
-
Size
20KB
-
MD5
1bad0cbd09b05a21157d8255dc801778
-
SHA1
ff284bba12f011b72e20d4c9537d6c455cdbf228
-
SHA256
218073bda7a00e780704c1289d5e22ad27bb3ba11f210afa18af33a6ad5176e9
-
SHA512
4fea56812eba1f1bba17f20d06b509e2a3b4e138562e53c230d0736d596abed4a6a3e43e26936fcd6d107924c8bba41885f34901afa4fd0d37d7e4a93c9b8533
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes:
a310logger.exepid process 108 a310logger.exe 108 a310logger.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
a310logger.exedescription pid process Token: SeDebugPrivilege 108 a310logger.exe