Overview

overview

8

Static

static

0e3bf40951...66.exe

windows7-x64

0e3bf40951...66.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0e3bf40951b7e73f46670ca0aff6537dacf2642716b9c456716e865af0afdb66

  • Size

    2.1MB

  • Sample

    221123-3sh95agd4x

  • MD5

    7742763dbabebe6a87b5440ef38281da

  • SHA1

    e88ad90a6196d1aba779d5430b8dab59519c92bc

  • SHA256

    0e3bf40951b7e73f46670ca0aff6537dacf2642716b9c456716e865af0afdb66

  • SHA512

    af474e1d775d1a2b616ebbd34fbc9e5f2f950487d8256783565257e67db5584f45c18a612185bd4d9a1309066392b0c23bbe22c2c89cdf13999dcd6d3dc21574

  • SSDEEP

    49152:h1OsmYIGWkf6jd9YMhKKumq+4oAczj/i6jgvb7GvKSS:h1OBdd9YMhKgq+4fD

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      0e3bf40951b7e73f46670ca0aff6537dacf2642716b9c456716e865af0afdb66

    • Size

      2.1MB

    • MD5

      7742763dbabebe6a87b5440ef38281da

    • SHA1

      e88ad90a6196d1aba779d5430b8dab59519c92bc

    • SHA256

      0e3bf40951b7e73f46670ca0aff6537dacf2642716b9c456716e865af0afdb66

    • SHA512

      af474e1d775d1a2b616ebbd34fbc9e5f2f950487d8256783565257e67db5584f45c18a612185bd4d9a1309066392b0c23bbe22c2c89cdf13999dcd6d3dc21574

    • SSDEEP

      49152:h1OsmYIGWkf6jd9YMhKKumq+4oAczj/i6jgvb7GvKSS:h1OBdd9YMhKgq+4fD

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks