Overview

overview

8

Static

static

5e8d846e76...b3.exe

windows7-x64

8

5e8d846e76...b3.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5e8d846e76f05ca1d9b64e93cb6eefb780992154657dbb6a71c6b65e42cc06b3

  • Size

    244KB

  • Sample

    221030-q4mepseadj

  • MD5

    a33e047ca70fc722baefbb74a326f7c8

  • SHA1

    c20a9b04c2a3769684011e905cbe39f19a6b6461

  • SHA256

    5e8d846e76f05ca1d9b64e93cb6eefb780992154657dbb6a71c6b65e42cc06b3

  • SHA512

    11b151755df89721bb5e1f70d3063748a7c990214205f97451b71356a9454fd4b79925cf117341acaff6a6b9c66c47006a021c979352d29975539684e7aed288

  • SSDEEP

    6144:h1OgDPdkBAFZWjadD4s51849D4Dq8cxX6:h1OgLdaO18G4Dg6

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      5e8d846e76f05ca1d9b64e93cb6eefb780992154657dbb6a71c6b65e42cc06b3

    • Size

      244KB

    • MD5

      a33e047ca70fc722baefbb74a326f7c8

    • SHA1

      c20a9b04c2a3769684011e905cbe39f19a6b6461

    • SHA256

      5e8d846e76f05ca1d9b64e93cb6eefb780992154657dbb6a71c6b65e42cc06b3

    • SHA512

      11b151755df89721bb5e1f70d3063748a7c990214205f97451b71356a9454fd4b79925cf117341acaff6a6b9c66c47006a021c979352d29975539684e7aed288

    • SSDEEP

      6144:h1OgDPdkBAFZWjadD4s51849D4Dq8cxX6:h1OgLdaO18G4Dg6

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks