Overview

overview

8

Static

static

06c7c6e263...19.exe

windows7-x64

8

06c7c6e263...19.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06c7c6e2639f3b93e78d15a313e9bba162425935fea7ba742096be7bbf309919

  • Size

    931KB

  • Sample

    221124-jzj1fsae48

  • MD5

    46e268b231bd09a50ec411a31657a29b

  • SHA1

    65d6dce60b70fcf64451d4048f2d7315e8a032bb

  • SHA256

    06c7c6e2639f3b93e78d15a313e9bba162425935fea7ba742096be7bbf309919

  • SHA512

    829af296a7f25d262d89390bb75f02dfebce3c7079e48adef910815bc84619b22cda56794eb48365246391664001223f34aa1862a307e97f35ee5ba692071e13

  • SSDEEP

    24576:h1OYdaOGMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfU:h1OsoMWyUQ+GUVFIcHPvpfU

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      06c7c6e2639f3b93e78d15a313e9bba162425935fea7ba742096be7bbf309919

    • Size

      931KB

    • MD5

      46e268b231bd09a50ec411a31657a29b

    • SHA1

      65d6dce60b70fcf64451d4048f2d7315e8a032bb

    • SHA256

      06c7c6e2639f3b93e78d15a313e9bba162425935fea7ba742096be7bbf309919

    • SHA512

      829af296a7f25d262d89390bb75f02dfebce3c7079e48adef910815bc84619b22cda56794eb48365246391664001223f34aa1862a307e97f35ee5ba692071e13

    • SSDEEP

      24576:h1OYdaOGMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfU:h1OsoMWyUQ+GUVFIcHPvpfU

    Score
    8/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks