Overview

overview

8

Static

static

20e60ff094...ff.exe

windows7-x64

8

20e60ff094...ff.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    20e60ff094fb57ac2b80744aba88c61635f85d109b29fcae776af05a65550bff

  • Size

    341KB

  • Sample

    220919-kfyj6sgeb6

  • MD5

    59a3fb18abf76e1955b666771d04712a

  • SHA1

    376983c0d74e65ec2fff72f760a94d527105c67e

  • SHA256

    20e60ff094fb57ac2b80744aba88c61635f85d109b29fcae776af05a65550bff

  • SHA512

    f38102d22673ceab36ccb713575ca9de7e75f33b3c8a557815aa62470f3f6d6d5c60932282fc5aac4040475fd79b050f8e13444c6223a149bf8f67dcaf94d0c3

  • SSDEEP

    6144:bTfFDbRnOTrAZJUJvIV9X7PkoCLIJ/2Hzq4PqrBQZ7o+xegv83+:d5OtKl7PkRLI12HCNqEYNk3+

Score
8/10
adwarestealer

Malware Config

Targets

    • Target

      20e60ff094fb57ac2b80744aba88c61635f85d109b29fcae776af05a65550bff

    • Size

      341KB

    • MD5

      59a3fb18abf76e1955b666771d04712a

    • SHA1

      376983c0d74e65ec2fff72f760a94d527105c67e

    • SHA256

      20e60ff094fb57ac2b80744aba88c61635f85d109b29fcae776af05a65550bff

    • SHA512

      f38102d22673ceab36ccb713575ca9de7e75f33b3c8a557815aa62470f3f6d6d5c60932282fc5aac4040475fd79b050f8e13444c6223a149bf8f67dcaf94d0c3

    • SSDEEP

      6144:bTfFDbRnOTrAZJUJvIV9X7PkoCLIJ/2Hzq4PqrBQZ7o+xegv83+:d5OtKl7PkRLI12HCNqEYNk3+

    Score
    8/10
    adwarestealer

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks