6ff7aedc498bef729553eafea78e4a5d498d52837f45c7c188d51cfaab10c2f9 | Triage

Submit
Reports

Overview

overview

8

Static

static

Setup_WinT...22.exe

windows7_x64

8

Sharing

General

Target

Setup_WinThruster_2022.exe
Size

6.2MB
Sample

220708-faj3dabha7
MD5

3a7e7ea1cf919179c78d9c1984954703
SHA1

e31ad15a0da3eb8da66cf41f7c867e5321a112ef
SHA256

6ff7aedc498bef729553eafea78e4a5d498d52837f45c7c188d51cfaab10c2f9
SHA512

c49c7c9fc88370ed88880bc2dcd2d24f611f2b96ebf9749600e7edfe563f06c8c3686a3fb6a4fa33ee9ade61ca8f79ba5a3372cfa2dcefad4a02af80687d46e2

Score

8^/10

discovery persistence spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

Setup_WinThruster_2022.exe

Resource

win7-20220414-en

discovery persistence spyware stealer

windows7_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Setup_WinThruster_2022.exe
- Size
  
  6.2MB
- MD5
  
  3a7e7ea1cf919179c78d9c1984954703
- SHA1
  
  e31ad15a0da3eb8da66cf41f7c867e5321a112ef
- SHA256
  
  6ff7aedc498bef729553eafea78e4a5d498d52837f45c7c188d51cfaab10c2f9
- SHA512
  
  c49c7c9fc88370ed88880bc2dcd2d24f611f2b96ebf9749600e7edfe563f06c8c3686a3fb6a4fa33ee9ade61ca8f79ba5a3372cfa2dcefad4a02af80687d46e2
Score

8^/10

discovery persistence spyware stealer
- Executes dropped EXE
- Registers COM server for autorun
  persistence
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Registry Run Keys / Startup Folder

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverypersistencespywarestealer

© 2018-2024

Terms | Privacy