Overview

overview

8

Static

static

746ec1a859...22.exe

windows7-x64

8

746ec1a859...22.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    746ec1a85944f41720aa2f4126afc09b691d46e859968baa770dd5ce83183522

  • Size

    3.7MB

  • Sample

    221125-jhnmbabe66

  • MD5

    66d72338fd01586f2e8e2d8302502163

  • SHA1

    6a24a9563c1546b1e37bf4744cc16dea9f1d20b7

  • SHA256

    746ec1a85944f41720aa2f4126afc09b691d46e859968baa770dd5ce83183522

  • SHA512

    00eff1ed1e4b3025870adaa610c0ceeb7fce2d1b06d80b7016387fe964cc84945216ebdc5423317db346c982713c59750803ac34a34c0781e6b8face48677d55

  • SSDEEP

    98304:8VnCmCJlHf9FSCSSCw8Rcs2aRrFLPnHxptQEf9GOoY:8gSlMO

Score
8/10
adwarediscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      746ec1a85944f41720aa2f4126afc09b691d46e859968baa770dd5ce83183522

    • Size

      3.7MB

    • MD5

      66d72338fd01586f2e8e2d8302502163

    • SHA1

      6a24a9563c1546b1e37bf4744cc16dea9f1d20b7

    • SHA256

      746ec1a85944f41720aa2f4126afc09b691d46e859968baa770dd5ce83183522

    • SHA512

      00eff1ed1e4b3025870adaa610c0ceeb7fce2d1b06d80b7016387fe964cc84945216ebdc5423317db346c982713c59750803ac34a34c0781e6b8face48677d55

    • SSDEEP

      98304:8VnCmCJlHf9FSCSSCw8Rcs2aRrFLPnHxptQEf9GOoY:8gSlMO

    Score
    8/10
    adwarediscoverypersistencespywarestealer

    • Registers COM server for autorun

      persistence

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks