Overview

overview

8

Static

static

67186401a8...19.exe

windows7-x64

8

67186401a8...19.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    67186401a81c390d4df402a8a25655d44fbda4407daec9c547768b8661dcfd19

  • Size

    2.1MB

  • Sample

    221123-vhkffaca4w

  • MD5

    14c70a6d03836a0fce711f8b8b77727d

  • SHA1

    766f5790e4bb3fb476fd56b3656e6f4497539a24

  • SHA256

    67186401a81c390d4df402a8a25655d44fbda4407daec9c547768b8661dcfd19

  • SHA512

    bd674765b6683dc65dc3bab2606c8f6a5a518d1be19ede4ad4422099fc65064ee2a7dc9fdbffa75e16a853efefc3f70bed6cc5d1dfff197dc4bb90bcc1747e53

  • SSDEEP

    49152:h1Os5AxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3F:h1OOAxib7CqWfTAeP2vaDhtSdpC

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      67186401a81c390d4df402a8a25655d44fbda4407daec9c547768b8661dcfd19

    • Size

      2.1MB

    • MD5

      14c70a6d03836a0fce711f8b8b77727d

    • SHA1

      766f5790e4bb3fb476fd56b3656e6f4497539a24

    • SHA256

      67186401a81c390d4df402a8a25655d44fbda4407daec9c547768b8661dcfd19

    • SHA512

      bd674765b6683dc65dc3bab2606c8f6a5a518d1be19ede4ad4422099fc65064ee2a7dc9fdbffa75e16a853efefc3f70bed6cc5d1dfff197dc4bb90bcc1747e53

    • SSDEEP

      49152:h1Os5AxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3F:h1OOAxib7CqWfTAeP2vaDhtSdpC

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks