Overview

overview

8

Static

static

06b7264adf...c2.exe

windows7-x64

8

06b7264adf...c2.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06b7264adf5b5a8255fdd0cd37f8f4fb1a2ac442dd14e91bf966b76794c17dc2

  • Size

    2.1MB

  • Sample

    221123-3t6rtage6w

  • MD5

    9ca26fb5de0a1e1e4f0b54ab9c438c3e

  • SHA1

    cabaaaf150b552351c5dec12bea9631ff2484cf7

  • SHA256

    06b7264adf5b5a8255fdd0cd37f8f4fb1a2ac442dd14e91bf966b76794c17dc2

  • SHA512

    cac8669092a4aa4ead4f2b8e0db9698cbdbd59f94604ce169b21dd60276ab8a5a03f946964c81811737162e6dfcaae5a20d578a102a129d1f5bca7c757e4ccc6

  • SSDEEP

    49152:h1OsqhvaZG1MVEtzijkTvu2x/uw4B8FHFF6q:h1OjvaxMziy31

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      06b7264adf5b5a8255fdd0cd37f8f4fb1a2ac442dd14e91bf966b76794c17dc2

    • Size

      2.1MB

    • MD5

      9ca26fb5de0a1e1e4f0b54ab9c438c3e

    • SHA1

      cabaaaf150b552351c5dec12bea9631ff2484cf7

    • SHA256

      06b7264adf5b5a8255fdd0cd37f8f4fb1a2ac442dd14e91bf966b76794c17dc2

    • SHA512

      cac8669092a4aa4ead4f2b8e0db9698cbdbd59f94604ce169b21dd60276ab8a5a03f946964c81811737162e6dfcaae5a20d578a102a129d1f5bca7c757e4ccc6

    • SSDEEP

      49152:h1OsqhvaZG1MVEtzijkTvu2x/uw4B8FHFF6q:h1OjvaxMziy31

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks