Overview

overview

8

Static

static

579e609060...77.exe

windows7-x64

8

579e609060...77.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    579e60906026f955fbf134ebcae26b2a0b350d1973789c70e535107dfdb89d77

  • Size

    3.7MB

  • Sample

    221125-jqjckaca88

  • MD5

    941920003df198582921a40f8d2aca65

  • SHA1

    37f5887ef0d94efc3d842fdfe5fc5083334f40e1

  • SHA256

    579e60906026f955fbf134ebcae26b2a0b350d1973789c70e535107dfdb89d77

  • SHA512

    b0eb721fe75cb07604872adc002217b9cfb44fe67f16492fb9c7ea9f9189800b5c89aa61e6f9aee8a933b056fd1b68f24ff1f4f0614b825aa2174083b7e63c4b

  • SSDEEP

    98304:2iwKcVwuGALd20Lu8hvj40We85TKRrj/iqs9GRTUiF53O:rwKcVwuGALd20Lu8hvj40WekTKRrjH4/

Score
8/10
adwarediscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      579e60906026f955fbf134ebcae26b2a0b350d1973789c70e535107dfdb89d77

    • Size

      3.7MB

    • MD5

      941920003df198582921a40f8d2aca65

    • SHA1

      37f5887ef0d94efc3d842fdfe5fc5083334f40e1

    • SHA256

      579e60906026f955fbf134ebcae26b2a0b350d1973789c70e535107dfdb89d77

    • SHA512

      b0eb721fe75cb07604872adc002217b9cfb44fe67f16492fb9c7ea9f9189800b5c89aa61e6f9aee8a933b056fd1b68f24ff1f4f0614b825aa2174083b7e63c4b

    • SSDEEP

      98304:2iwKcVwuGALd20Lu8hvj40We85TKRrj/iqs9GRTUiF53O:rwKcVwuGALd20Lu8hvj40WekTKRrjH4/

    Score
    8/10
    adwarediscoverypersistencespywarestealer

    • Registers COM server for autorun

      persistence

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks