Overview

overview

8

Static

static

bf4cfe2ded...d3.exe

windows7-x64

8

bf4cfe2ded...d3.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    bf4cfe2ded300e81f9db859d2d3127051c619cf2040ec5a78e390b40cd1886d3

  • Size

    2.0MB

  • Sample

    221125-q5s9mscb66

  • MD5

    eb4521dbebd150987fecaeaef8a323ab

  • SHA1

    39bbd73449a8f8b9b4d762d2495e989d816731ad

  • SHA256

    bf4cfe2ded300e81f9db859d2d3127051c619cf2040ec5a78e390b40cd1886d3

  • SHA512

    55a5140476faec089d89bc35ea239ca06ffd3ae77fff61d67dfeeb6ce679d43eb629e1beb7d123543095f404f38ccfaa5187e89eb3ebdbad74b29a70a5f97dfe

  • SSDEEP

    49152:h1Os7Upag+Qk/+ouXBVm/KLp0f5fR6Tu3PHYwxzILQJsa7H:h1OaUpAWouXBVm/KLp0+Tu3jH

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      bf4cfe2ded300e81f9db859d2d3127051c619cf2040ec5a78e390b40cd1886d3

    • Size

      2.0MB

    • MD5

      eb4521dbebd150987fecaeaef8a323ab

    • SHA1

      39bbd73449a8f8b9b4d762d2495e989d816731ad

    • SHA256

      bf4cfe2ded300e81f9db859d2d3127051c619cf2040ec5a78e390b40cd1886d3

    • SHA512

      55a5140476faec089d89bc35ea239ca06ffd3ae77fff61d67dfeeb6ce679d43eb629e1beb7d123543095f404f38ccfaa5187e89eb3ebdbad74b29a70a5f97dfe

    • SSDEEP

      49152:h1Os7Upag+Qk/+ouXBVm/KLp0f5fR6Tu3PHYwxzILQJsa7H:h1OaUpAWouXBVm/KLp0+Tu3jH

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks