Overview

overview

8

Static

static

0531b18981...a6.exe

windows7-x64

8

0531b18981...a6.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0531b1898198da22e6d417ee97f21c48170647c83130d725554fa68fad3c8aa6

  • Size

    2.1MB

  • Sample

    221123-3vl4ssge81

  • MD5

    61261d84732284c156a220090c3cd1fc

  • SHA1

    2b93e89d5ad3b4af7dee3c154bddb3171b94c7f0

  • SHA256

    0531b1898198da22e6d417ee97f21c48170647c83130d725554fa68fad3c8aa6

  • SHA512

    14754ef59246af813c42e69c18e2458edc6f650b3b46e924fdfc34b9130848df6bc88b92f136e4201582bd07624576dac7a6b1018e400207be899af17913504b

  • SSDEEP

    49152:h1OsqyuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8Pci2:h1OTgoP9oM5LFe

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      0531b1898198da22e6d417ee97f21c48170647c83130d725554fa68fad3c8aa6

    • Size

      2.1MB

    • MD5

      61261d84732284c156a220090c3cd1fc

    • SHA1

      2b93e89d5ad3b4af7dee3c154bddb3171b94c7f0

    • SHA256

      0531b1898198da22e6d417ee97f21c48170647c83130d725554fa68fad3c8aa6

    • SHA512

      14754ef59246af813c42e69c18e2458edc6f650b3b46e924fdfc34b9130848df6bc88b92f136e4201582bd07624576dac7a6b1018e400207be899af17913504b

    • SSDEEP

      49152:h1OsqyuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8Pci2:h1OTgoP9oM5LFe

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks