Overview

overview

8

Static

static

a585d464bf...67.exe

windows7-x64

8

a585d464bf...67.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a585d464bfc6a85a716064609640e47f78df7335f74c8e76f72a7ff99a73b567

  • Size

    931KB

  • Sample

    221124-z3rgpsac65

  • MD5

    293ddd9c102b9231bfc136b0eb1ccaac

  • SHA1

    b5a40931db2a27c97b92eb31d839fc1062c5114d

  • SHA256

    a585d464bfc6a85a716064609640e47f78df7335f74c8e76f72a7ff99a73b567

  • SHA512

    06822dc54df3c2ff1f5f8696d7862a64b4f3c544c510f10051d6b1eaa27da4f6ef2d72ff3abd65094d25d9f7b19cd7da14b89d009118361ed2c42db4a550252d

  • SSDEEP

    24576:h1OYdaOICZ/iWCvu/2sWsJA/jlt+DHhsS:h1OsKCpYO/dJJDHhsS

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      a585d464bfc6a85a716064609640e47f78df7335f74c8e76f72a7ff99a73b567

    • Size

      931KB

    • MD5

      293ddd9c102b9231bfc136b0eb1ccaac

    • SHA1

      b5a40931db2a27c97b92eb31d839fc1062c5114d

    • SHA256

      a585d464bfc6a85a716064609640e47f78df7335f74c8e76f72a7ff99a73b567

    • SHA512

      06822dc54df3c2ff1f5f8696d7862a64b4f3c544c510f10051d6b1eaa27da4f6ef2d72ff3abd65094d25d9f7b19cd7da14b89d009118361ed2c42db4a550252d

    • SSDEEP

      24576:h1OYdaOICZ/iWCvu/2sWsJA/jlt+DHhsS:h1OsKCpYO/dJJDHhsS

    Score
    8/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks