Overview

overview

8

Static

static

8635ba7f31...6c.exe

windows7-x64

8

8635ba7f31...6c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8635ba7f314990b667aadf1ce7df349608f4e985176a7a985863d38c3230b36c

  • Size

    4.3MB

  • Sample

    221124-2sgkvsea43

  • MD5

    2de4ae06463a50138f84966311fdb1c8

  • SHA1

    830fa010ada51cc4cc8725feb744cc196287b92d

  • SHA256

    8635ba7f314990b667aadf1ce7df349608f4e985176a7a985863d38c3230b36c

  • SHA512

    a94e3dae4be45b212d8690b8298d805c763acb6164482a6a80c008263b97b9883cf09b882c0d273d019b1c3ea6eb19402c488f7d79cc7d0f4d07338d5fb3d260

  • SSDEEP

    49152:nCOqIz5U23CZ+6rmxup4hdGKvghxfki1ZPXGIjQX/yoC3yE/Ac5mWxnmpb:a25U946zKcTP2iQ6oWNAxenW

Score
8/10
adwarediscoverypersistencestealer

Malware Config

Targets

    • Target

      8635ba7f314990b667aadf1ce7df349608f4e985176a7a985863d38c3230b36c

    • Size

      4.3MB

    • MD5

      2de4ae06463a50138f84966311fdb1c8

    • SHA1

      830fa010ada51cc4cc8725feb744cc196287b92d

    • SHA256

      8635ba7f314990b667aadf1ce7df349608f4e985176a7a985863d38c3230b36c

    • SHA512

      a94e3dae4be45b212d8690b8298d805c763acb6164482a6a80c008263b97b9883cf09b882c0d273d019b1c3ea6eb19402c488f7d79cc7d0f4d07338d5fb3d260

    • SSDEEP

      49152:nCOqIz5U23CZ+6rmxup4hdGKvghxfki1ZPXGIjQX/yoC3yE/Ac5mWxnmpb:a25U946zKcTP2iQ6oWNAxenW

    Score
    8/10
    adwarediscoverypersistencestealer

    • Registers COM server for autorun

      persistence

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks