Overview

overview

8

Static

static

40ed750cc1...ad.exe

windows7-x64

8

40ed750cc1...ad.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    40ed750cc1a79745c382241bbd0514f45030e654e7f2a7fa4a25ffd416fb07ad

  • Size

    931KB

  • Sample

    221124-n6lvvacb99

  • MD5

    68c3b103b013a5fcc23278d0b8f54b60

  • SHA1

    3622096c42045e1ed158547bdeb547bf62d369c5

  • SHA256

    40ed750cc1a79745c382241bbd0514f45030e654e7f2a7fa4a25ffd416fb07ad

  • SHA512

    47c5adf6282d21c88b1cab77275e868c5a2afbda9774034a5d1dbdd54d1ab411679d829874d14a8228b08ba0b88947a4a4acdd66e5f125c7a33fd04c268d73df

  • SSDEEP

    24576:h1OYdaO3MWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfl:h1OsNMWyUQ+GUVFIcHPvpfl

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      40ed750cc1a79745c382241bbd0514f45030e654e7f2a7fa4a25ffd416fb07ad

    • Size

      931KB

    • MD5

      68c3b103b013a5fcc23278d0b8f54b60

    • SHA1

      3622096c42045e1ed158547bdeb547bf62d369c5

    • SHA256

      40ed750cc1a79745c382241bbd0514f45030e654e7f2a7fa4a25ffd416fb07ad

    • SHA512

      47c5adf6282d21c88b1cab77275e868c5a2afbda9774034a5d1dbdd54d1ab411679d829874d14a8228b08ba0b88947a4a4acdd66e5f125c7a33fd04c268d73df

    • SSDEEP

      24576:h1OYdaO3MWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfl:h1OsNMWyUQ+GUVFIcHPvpfl

    Score
    8/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks