Analysis
-
max time kernel
121s -
max time network
121s -
platform
windows10_x64 -
resource
win10-en-20211014 -
submitted
16-10-2021 21:59
General
-
Target
5fc5f085acfa0071db7d7ecaca696650.exe
-
Size
1.3MB
-
MD5
5fc5f085acfa0071db7d7ecaca696650
-
SHA1
a756cd5b994f5afe33a4692352bae57a9f5313a3
-
SHA256
9d35a2153846ecea71060d69014279cb526f8b432913d02759c5023a81c62d59
-
SHA512
83c46365757b7f17f97409c2b8c55ab2bdb548b58ae5472d17568a0d2caa3d37f11e8e99d756043ca8e359b788394d92d7c6f98145d0f8c18fcd4fd1839d7be9
Score
7/10
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Looks up external IP address via web service 1 IoCs
Uses a legitimate IP lookup service to find the infected system's external IP.
Processes
-
C:\Users\Admin\AppData\Local\Temp\5fc5f085acfa0071db7d7ecaca696650.exe"C:\Users\Admin\AppData\Local\Temp\5fc5f085acfa0071db7d7ecaca696650.exe"1⤵