Overview

overview

8

Static

static

c0498b572e...66.exe

windows7-x64

8

c0498b572e...66.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c0498b572e079b9e33194f86feec355e069569f61d3cec00d6d8d23a8de47166

  • Size

    932KB

  • Sample

    221124-yjt8tahh8t

  • MD5

    d04a7fe0eb7b6e12527d9ceb68294419

  • SHA1

    10ac2f8768f306f85d5cb592ace4930772b9244a

  • SHA256

    c0498b572e079b9e33194f86feec355e069569f61d3cec00d6d8d23a8de47166

  • SHA512

    6a58062a661335c64b7e00932ded1f7ede856c3ed31004000d235014e6fbe17b48dbb6aa4ce13873714bf3a78e4436ffa938288d50fa4ac245d7e92a9be8cb3a

  • SSDEEP

    24576:h1OYdaO9CZ/iWCvu/2sWsJA/jlt+DHhsy:h1OsvCpYO/dJJDHhsy

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      c0498b572e079b9e33194f86feec355e069569f61d3cec00d6d8d23a8de47166

    • Size

      932KB

    • MD5

      d04a7fe0eb7b6e12527d9ceb68294419

    • SHA1

      10ac2f8768f306f85d5cb592ace4930772b9244a

    • SHA256

      c0498b572e079b9e33194f86feec355e069569f61d3cec00d6d8d23a8de47166

    • SHA512

      6a58062a661335c64b7e00932ded1f7ede856c3ed31004000d235014e6fbe17b48dbb6aa4ce13873714bf3a78e4436ffa938288d50fa4ac245d7e92a9be8cb3a

    • SSDEEP

      24576:h1OYdaO9CZ/iWCvu/2sWsJA/jlt+DHhsy:h1OsvCpYO/dJJDHhsy

    Score
    8/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks