Overview

overview

7

Static

static

50f65e310d...d2.exe

windows7-x64

7

50f65e310d...d2.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    155s
  • max time network
    164s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-11-2022 11:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    50f65e310df6326a3f67541d59a0d42a87de39b87c9d4aae31414e0848b9a5d2.exe

  • Size

    935KB

  • MD5

    65eaf74c1415e0728eb353f274a4db85

  • SHA1

    6d9e284d945313f3c9c8780ffa4e4b2551a0b084

  • SHA256

    50f65e310df6326a3f67541d59a0d42a87de39b87c9d4aae31414e0848b9a5d2

  • SHA512

    57fd25146133cd24be62b57fc9cab5772847502f531420319b545d887043e2b95f18f0e4810f7ec81c0a33ca1acb92024cdd449b674e810d690536603ce604d7

  • SSDEEP

    24576:9hKrgaIj+7bsYATkNU06QIFjzK5LJcpIF5ukriA0//cSOw:MoYATkXxIlzK5LJb5VrM/R

Score
7/10
spywarestealer

Malware Config

Signatures

  • Reads user/profile data of web browsers 2 TTPs

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\50f65e310df6326a3f67541d59a0d42a87de39b87c9d4aae31414e0848b9a5d2.exe
    "C:\Users\Admin\AppData\Local\Temp\50f65e310df6326a3f67541d59a0d42a87de39b87c9d4aae31414e0848b9a5d2.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:944

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads