Overview

overview

8

Static

static

c34b4aa0a9...42.exe

windows7-x64

8

c34b4aa0a9...42.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    c34b4aa0a98c8e7999f89298ea1fbb6e18e2678a809b8a62553bec0032017e42

  • Size

    2.1MB

  • Sample

    221123-2l3jradc9y

  • MD5

    21863d5b1dd0649c3d97729cba58d64a

  • SHA1

    7f0bcc9aa8a735195ec5e7e8bfad46f74a4cdfda

  • SHA256

    c34b4aa0a98c8e7999f89298ea1fbb6e18e2678a809b8a62553bec0032017e42

  • SHA512

    d2763a16074fda12c9fa2fe222bea162c7336760fc7e1361582b66014bb41486f0e182069970adf736d44b2b3758fc0197d1c3b6ff4a9f80fd0fef49b393374b

  • SSDEEP

    49152:h1OsxYIGWkf6jd9YMhKKumq+4oAczj/i6jgvb7GvKSQ:h1Ocdd9YMhKgq+4fN

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      c34b4aa0a98c8e7999f89298ea1fbb6e18e2678a809b8a62553bec0032017e42

    • Size

      2.1MB

    • MD5

      21863d5b1dd0649c3d97729cba58d64a

    • SHA1

      7f0bcc9aa8a735195ec5e7e8bfad46f74a4cdfda

    • SHA256

      c34b4aa0a98c8e7999f89298ea1fbb6e18e2678a809b8a62553bec0032017e42

    • SHA512

      d2763a16074fda12c9fa2fe222bea162c7336760fc7e1361582b66014bb41486f0e182069970adf736d44b2b3758fc0197d1c3b6ff4a9f80fd0fef49b393374b

    • SSDEEP

      49152:h1OsxYIGWkf6jd9YMhKKumq+4oAczj/i6jgvb7GvKSQ:h1Ocdd9YMhKgq+4fN

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks