Overview

overview

7

Static

static

90160dac41...00.exe

windows7_x64

7

90160dac41...00.exe

windows10-2004_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    90160dac413cabeaca19fac459501c04772b2448be834415576fb1c7f4e42300

  • Size

    258KB

  • Sample

    220427-xpj5csdefj

  • MD5

    64f2d3ba1c5af7ab5ad266d831a3994b

  • SHA1

    00269dfd14f7fe83542779d184d1339c28025363

  • SHA256

    90160dac413cabeaca19fac459501c04772b2448be834415576fb1c7f4e42300

  • SHA512

    a22ce0d42283d979735e0cc8c9eb00fef7b2afa45b922e49c7f069bde8736042d9f27a892eeebbae2c1e0100e4bf0f10c95cd18c02b8cdf02271364f03e9d47a

Score
7/10
adwarestealer

Malware Config

Targets

    • Target

      90160dac413cabeaca19fac459501c04772b2448be834415576fb1c7f4e42300

    • Size

      258KB

    • MD5

      64f2d3ba1c5af7ab5ad266d831a3994b

    • SHA1

      00269dfd14f7fe83542779d184d1339c28025363

    • SHA256

      90160dac413cabeaca19fac459501c04772b2448be834415576fb1c7f4e42300

    • SHA512

      a22ce0d42283d979735e0cc8c9eb00fef7b2afa45b922e49c7f069bde8736042d9f27a892eeebbae2c1e0100e4bf0f10c95cd18c02b8cdf02271364f03e9d47a

    Score
    7/10
    adwarestealer

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

1
T1176

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks