Overview

overview

8

Static

static

c410b85118...3a.exe

windows7-x64

8

c410b85118...3a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    c410b85118b5e220feb1b14e665468da166ef205d10411505e829e6991125e3a

  • Size

    188KB

  • Sample

    221106-l3zanahbcq

  • MD5

    2d9f8f1c8ac6d566ec4c665458f95f50

  • SHA1

    5f79b1591260e20afa07163a7c639d880e6edd9d

  • SHA256

    c410b85118b5e220feb1b14e665468da166ef205d10411505e829e6991125e3a

  • SHA512

    8a970e00264df7f219f891eaf92316b4788edae1873e5037cfb58f8d1a1f85b295daa14bb2751749ec60d979c871f54cdfc5c2616efd1fde951ac2171633ea93

  • SSDEEP

    3072:hn1/uEAgDPdkBlyFZ+ScjaiKWbETBquAEXlqsUU5qBFV85qMzAQ6kf7GJG:h1OgDPdkBAFZWjadD4s55qB0BzAQ73

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      c410b85118b5e220feb1b14e665468da166ef205d10411505e829e6991125e3a

    • Size

      188KB

    • MD5

      2d9f8f1c8ac6d566ec4c665458f95f50

    • SHA1

      5f79b1591260e20afa07163a7c639d880e6edd9d

    • SHA256

      c410b85118b5e220feb1b14e665468da166ef205d10411505e829e6991125e3a

    • SHA512

      8a970e00264df7f219f891eaf92316b4788edae1873e5037cfb58f8d1a1f85b295daa14bb2751749ec60d979c871f54cdfc5c2616efd1fde951ac2171633ea93

    • SSDEEP

      3072:hn1/uEAgDPdkBlyFZ+ScjaiKWbETBquAEXlqsUU5qBFV85qMzAQ6kf7GJG:h1OgDPdkBAFZWjadD4s55qB0BzAQ73

    Score
    8/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks