Overview

overview

8

Static

static

f7c70ca9b1...cf.exe

windows7-x64

8

f7c70ca9b1...cf.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    f7c70ca9b1e410e92a3b8bdfbdbe495899fe5db26e7aa6e524a58106ebfc65cf

  • Size

    2.1MB

  • Sample

    221123-1wyg4sgc94

  • MD5

    1da2391c740702a94b5cf6bbe99a36c3

  • SHA1

    4ddd687b581cd8e21d87a2fca3fd34b1378178e3

  • SHA256

    f7c70ca9b1e410e92a3b8bdfbdbe495899fe5db26e7aa6e524a58106ebfc65cf

  • SHA512

    9d205be78f9dec843ffb71473e10d109561e16fbb2f6ebec1894ebdc172343cce17ccbe3b218a5dd8a685cd4f7e85a41fcc1551b2ab1b51e4bdc1168ebc02bfa

  • SSDEEP

    49152:h1OsTPtqGqK2M8f3h4UO2sEYYQvLZwQE5m4o3:h1OIHoxLYYaL

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      f7c70ca9b1e410e92a3b8bdfbdbe495899fe5db26e7aa6e524a58106ebfc65cf

    • Size

      2.1MB

    • MD5

      1da2391c740702a94b5cf6bbe99a36c3

    • SHA1

      4ddd687b581cd8e21d87a2fca3fd34b1378178e3

    • SHA256

      f7c70ca9b1e410e92a3b8bdfbdbe495899fe5db26e7aa6e524a58106ebfc65cf

    • SHA512

      9d205be78f9dec843ffb71473e10d109561e16fbb2f6ebec1894ebdc172343cce17ccbe3b218a5dd8a685cd4f7e85a41fcc1551b2ab1b51e4bdc1168ebc02bfa

    • SSDEEP

      49152:h1OsTPtqGqK2M8f3h4UO2sEYYQvLZwQE5m4o3:h1OIHoxLYYaL

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks