Overview

overview

8

Static

static

4ae8f4ed44...ef.exe

windows7-x64

8

4ae8f4ed44...ef.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4ae8f4ed44459502912172438a1219fa443024c4d4562bb0e105f6919c0a72ef

  • Size

    2.5MB

  • Sample

    221125-cbf6bsgc5v

  • MD5

    85103a447b38601ccc9ee2ee5bdd9d08

  • SHA1

    1950c4ab63c1f45550a81b121f84b01b7213f1d5

  • SHA256

    4ae8f4ed44459502912172438a1219fa443024c4d4562bb0e105f6919c0a72ef

  • SHA512

    82baca85ee600cbd2bf10754869f35e2570ac8a195cfc078a00bec259b22a541f0d8661b24873adb67427492e73e523a879d277a06132c885a9127ca12dcd95e

  • SSDEEP

    49152:h1OsnyDFXmj+BHBALGk7GNIgSDjjQkzYznJKOZaB/IsxZ:h1Ow0JSqALGkqaDj7Z

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      4ae8f4ed44459502912172438a1219fa443024c4d4562bb0e105f6919c0a72ef

    • Size

      2.5MB

    • MD5

      85103a447b38601ccc9ee2ee5bdd9d08

    • SHA1

      1950c4ab63c1f45550a81b121f84b01b7213f1d5

    • SHA256

      4ae8f4ed44459502912172438a1219fa443024c4d4562bb0e105f6919c0a72ef

    • SHA512

      82baca85ee600cbd2bf10754869f35e2570ac8a195cfc078a00bec259b22a541f0d8661b24873adb67427492e73e523a879d277a06132c885a9127ca12dcd95e

    • SSDEEP

      49152:h1OsnyDFXmj+BHBALGk7GNIgSDjjQkzYznJKOZaB/IsxZ:h1Ow0JSqALGkqaDj7Z

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks