Overview

overview

8

Static

static

e0b5deacbd...8a.exe

windows7-x64

8

e0b5deacbd...8a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    e0b5deacbd776b2c2b245b35759bfecb16255d155d4bdebc1f688e571c7e2c8a

  • Size

    2.1MB

  • Sample

    221123-2e4s8sch2y

  • MD5

    00f37bb8673a87046c59b61b2f1029e3

  • SHA1

    d479cf3a8dd9943fd73ec535e8f48538deccefcf

  • SHA256

    e0b5deacbd776b2c2b245b35759bfecb16255d155d4bdebc1f688e571c7e2c8a

  • SHA512

    7b59430ad44b1709089ad70179c862f9305ba651b412592be570b8d1c5f8d30b44b626878422cb23552beb4f2b004c2ca12907c689ab2c621cfeec95f7067a5f

  • SSDEEP

    49152:h1OsrYIGWkf6jd9YMhKKumq+4oAczj/i6jgvb7GvKSg:h1Okdd9YMhKgq+4ft

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      e0b5deacbd776b2c2b245b35759bfecb16255d155d4bdebc1f688e571c7e2c8a

    • Size

      2.1MB

    • MD5

      00f37bb8673a87046c59b61b2f1029e3

    • SHA1

      d479cf3a8dd9943fd73ec535e8f48538deccefcf

    • SHA256

      e0b5deacbd776b2c2b245b35759bfecb16255d155d4bdebc1f688e571c7e2c8a

    • SHA512

      7b59430ad44b1709089ad70179c862f9305ba651b412592be570b8d1c5f8d30b44b626878422cb23552beb4f2b004c2ca12907c689ab2c621cfeec95f7067a5f

    • SSDEEP

      49152:h1OsrYIGWkf6jd9YMhKKumq+4oAczj/i6jgvb7GvKSg:h1Okdd9YMhKgq+4ft

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks