Overview

overview

8

Static

static

130f605813...b7.exe

windows7-x64

8

130f605813...b7.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    130f6058130a65297e84393f506857cbeccb1b7e2a67c47db049da32cc5531b7

  • Size

    2.1MB

  • Sample

    221123-3rh8qsda99

  • MD5

    70a672538e06244a753260a304e189da

  • SHA1

    69ad72630cd2f9e0087c470fa3465343628e535c

  • SHA256

    130f6058130a65297e84393f506857cbeccb1b7e2a67c47db049da32cc5531b7

  • SHA512

    3423d9a81a52282edd5cda02baf37aeae393883b39941d79e72979a974d62f3386424dbe22afe2ffc608cfd4888ea0f13dc2eb3eafe718dd8e466101bb544ace

  • SSDEEP

    49152:h1OsbYIGWkf6jd9YMhKKumq+4oAczj/i6jgvb7GvKSe:h1O0dd9YMhKgq+4fX

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      130f6058130a65297e84393f506857cbeccb1b7e2a67c47db049da32cc5531b7

    • Size

      2.1MB

    • MD5

      70a672538e06244a753260a304e189da

    • SHA1

      69ad72630cd2f9e0087c470fa3465343628e535c

    • SHA256

      130f6058130a65297e84393f506857cbeccb1b7e2a67c47db049da32cc5531b7

    • SHA512

      3423d9a81a52282edd5cda02baf37aeae393883b39941d79e72979a974d62f3386424dbe22afe2ffc608cfd4888ea0f13dc2eb3eafe718dd8e466101bb544ace

    • SSDEEP

      49152:h1OsbYIGWkf6jd9YMhKKumq+4oAczj/i6jgvb7GvKSe:h1O0dd9YMhKgq+4fX

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks