Overview

overview

8

Static

static

0f7c0f7fef...26.exe

windows7-x64

8

0f7c0f7fef...26.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    0f7c0f7feffd347e99efc9c56d86baf0fd44b36fa8efac2cd93df48a44e77026

  • Size

    2.0MB

  • Sample

    221124-f2lehsef21

  • MD5

    a7d89791419c28ea36679792d6785000

  • SHA1

    bc6cd0e780d070962129d7ac08edb6301577da39

  • SHA256

    0f7c0f7feffd347e99efc9c56d86baf0fd44b36fa8efac2cd93df48a44e77026

  • SHA512

    194cf45903b68b4b583c72031c5fae46e140df86a13ac4e826abaffd7b17e6cb2a68001198c2ce80df2c2afee84df5a6d1bb7088d39825465352ba7a6a866f8c

  • SSDEEP

    24576:h1OYdaOvjfen1Y6KIc8dPc3Mp6CzcJcB1TE1VyDGxQQYxMfyylmCHxxyJGb8tb:h1Os9ZIdJc346K1TcAGb8tb

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      0f7c0f7feffd347e99efc9c56d86baf0fd44b36fa8efac2cd93df48a44e77026

    • Size

      2.0MB

    • MD5

      a7d89791419c28ea36679792d6785000

    • SHA1

      bc6cd0e780d070962129d7ac08edb6301577da39

    • SHA256

      0f7c0f7feffd347e99efc9c56d86baf0fd44b36fa8efac2cd93df48a44e77026

    • SHA512

      194cf45903b68b4b583c72031c5fae46e140df86a13ac4e826abaffd7b17e6cb2a68001198c2ce80df2c2afee84df5a6d1bb7088d39825465352ba7a6a866f8c

    • SSDEEP

      24576:h1OYdaOvjfen1Y6KIc8dPc3Mp6CzcJcB1TE1VyDGxQQYxMfyylmCHxxyJGb8tb:h1Os9ZIdJc346K1TcAGb8tb

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks