110ce602fba77339e9440508c11858c21b0d6e1b5d0b6f874dbd6d388e064fc2 | Triage

Analysis

max time kernel
42s
max time network
46s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
20-09-2022 22:15

Sharing

Report Analysis Logs

General

Target

110ce602fba77339e9440508c11858c21b0d6e1b5d0b6f874dbd6d388e064fc2.exe
Size

7.4MB
MD5

c0389ebb8f98d5435de24d0bd28ec042
SHA1

1226405f1beb907d3f58552c6ff72b684d0a5ba3
SHA256

110ce602fba77339e9440508c11858c21b0d6e1b5d0b6f874dbd6d388e064fc2
SHA512

6649d9775a07bff7e1ac9ad2fffcb1220f58672f1ea98de9a12ad9d0a008732aa1b2501026051c542a772896e3878e7950178a919ea56136a845d69a37a69f56
SSDEEP

49152:wGk1t1MHbwDuPYrb/TzvO90d7HjmAFd4A64nsfJhAZ8isuxST8IEjtEZeqPaSeOF:w0b9ASCRcB63qnQxTAqugEHwPi

Score

7^/10

spyware stealer

Malware Config

Signatures

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials in Files
T1081

C:\Users\Admin\AppData\Local\Temp\110ce602fba77339e9440508c11858c21b0d6e1b5d0b6f874dbd6d388e064fc2.exe
"C:\Users\Admin\AppData\Local\Temp\110ce602fba77339e9440508c11858c21b0d6e1b5d0b6f874dbd6d388e064fc2.exe"
1⤵
PID:1976

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads