Overview

overview

8

Static

static

57c8ecdc9e...0b.exe

windows7-x64

8

57c8ecdc9e...0b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    57c8ecdc9ec147e1791c3aa1e21845e4882d7f32e15c2116a5bf518e61ddc90b

  • Size

    2.1MB

  • Sample

    221125-1zzjksdc31

  • MD5

    d8601787065f5580adb83cae789bfaef

  • SHA1

    5dddbb648225c3eb13775fe2483cce388283d8fe

  • SHA256

    57c8ecdc9ec147e1791c3aa1e21845e4882d7f32e15c2116a5bf518e61ddc90b

  • SHA512

    26e6af901b49053f93e9975a27456d9a4a38af2625e61bc1a869af1cb5d30930f0a954f29500c1ad23d6ac4edf3062fb730f4b8969c08c6397142a51a02b77cc

  • SSDEEP

    49152:h1OsjM1PrQiLDuig1gjdjH3spGKW8bxA/hm:h1ObPrQsMgjv0

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      57c8ecdc9ec147e1791c3aa1e21845e4882d7f32e15c2116a5bf518e61ddc90b

    • Size

      2.1MB

    • MD5

      d8601787065f5580adb83cae789bfaef

    • SHA1

      5dddbb648225c3eb13775fe2483cce388283d8fe

    • SHA256

      57c8ecdc9ec147e1791c3aa1e21845e4882d7f32e15c2116a5bf518e61ddc90b

    • SHA512

      26e6af901b49053f93e9975a27456d9a4a38af2625e61bc1a869af1cb5d30930f0a954f29500c1ad23d6ac4edf3062fb730f4b8969c08c6397142a51a02b77cc

    • SSDEEP

      49152:h1OsjM1PrQiLDuig1gjdjH3spGKW8bxA/hm:h1ObPrQsMgjv0

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks