Overview

overview

8

Static

static

44ab0e2b7c...af.exe

windows7-x64

8

44ab0e2b7c...af.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    44ab0e2b7cf4366f8f1bd2d45fd3008b29c5c12f03b422811089777f0beb68af

  • Size

    2.1MB

  • Sample

    221125-147qraaf44

  • MD5

    f3d9fae45bbfd23802fb1966b89db636

  • SHA1

    1758da35507a18a66513d113090d9f06c4cabf1c

  • SHA256

    44ab0e2b7cf4366f8f1bd2d45fd3008b29c5c12f03b422811089777f0beb68af

  • SHA512

    97f5ec4e38de4e8046b1abc2819c806a392ee19f3a0ed5d5f82b10abaabf318cb7173c42114d871f16fec61c967e375741374e062c2520ae1e7fdcb406831117

  • SSDEEP

    49152:h1OsryuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8PciU:h1O4goP9oM5LFM

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      44ab0e2b7cf4366f8f1bd2d45fd3008b29c5c12f03b422811089777f0beb68af

    • Size

      2.1MB

    • MD5

      f3d9fae45bbfd23802fb1966b89db636

    • SHA1

      1758da35507a18a66513d113090d9f06c4cabf1c

    • SHA256

      44ab0e2b7cf4366f8f1bd2d45fd3008b29c5c12f03b422811089777f0beb68af

    • SHA512

      97f5ec4e38de4e8046b1abc2819c806a392ee19f3a0ed5d5f82b10abaabf318cb7173c42114d871f16fec61c967e375741374e062c2520ae1e7fdcb406831117

    • SSDEEP

      49152:h1OsryuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8PciU:h1O4goP9oM5LFM

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks