Analysis
-
max time kernel
46s -
max time network
50s -
platform
windows7_x64 -
resource
win7-20220901-en -
resource tags
arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system -
submitted
11/10/2022, 16:16
Static task
static1
Behavioral task
behavioral1
Sample
cb5f8e8508dfbba4f45eba7f4cd5724758e2cd88c40b54c45572b5ef3d992b86.exe
Resource
win7-20220901-en
2 signatures
150 seconds
General
-
Target
cb5f8e8508dfbba4f45eba7f4cd5724758e2cd88c40b54c45572b5ef3d992b86.exe
-
Size
775KB
-
MD5
42f0099345621b013f32d921071c3815
-
SHA1
d2ec18721a0e72ac4a0e9fe42ba25c3378289c11
-
SHA256
cb5f8e8508dfbba4f45eba7f4cd5724758e2cd88c40b54c45572b5ef3d992b86
-
SHA512
964fa42966ba6790187e4c5407dbe6eecfdd86f667e51bc71c7e0fdb139f4d44104da60182112c1c15e52cf08926ae0c9b260861f428d8164283063198b7df95
-
SSDEEP
12288:IhvshGR/j/uTz+98JxcB4z8GZ9Q0YyXLW/rnyo3WXoU6FFU9bEgL:8rmTzm8f44gGZgWLW/V3WGLzgL
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 1600 cb5f8e8508dfbba4f45eba7f4cd5724758e2cd88c40b54c45572b5ef3d992b86.exe