Overview

overview

8

Static

static

b29975ce07...7c.exe

windows7-x64

8

b29975ce07...7c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b29975ce077747b8a5d8be72a259c788c46f90f638ed5b6c2dea89b14b75597c

  • Size

    1.8MB

  • Sample

    221125-q9qz3sff4t

  • MD5

    8c105437c2edf7b74f223b59a737b10d

  • SHA1

    7a6bd38afa8250bd76805bc9bb46c9f8b179997c

  • SHA256

    b29975ce077747b8a5d8be72a259c788c46f90f638ed5b6c2dea89b14b75597c

  • SHA512

    86150d6ff2164189fd42d240ada970d6e0fe136878b81b240b2de01fa5257c539890a6a92555f646563bb27293f6d682fdd835c119ea12803862b3ffe5af3904

  • SSDEEP

    49152:UM1jeOvZ94MypISORa1FvcaH1kTYZLflhOYhJXJ:UEeOnmIFa1FEaSYZTlhOYhJXJ

Score
8/10
adwarediscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      b29975ce077747b8a5d8be72a259c788c46f90f638ed5b6c2dea89b14b75597c

    • Size

      1.8MB

    • MD5

      8c105437c2edf7b74f223b59a737b10d

    • SHA1

      7a6bd38afa8250bd76805bc9bb46c9f8b179997c

    • SHA256

      b29975ce077747b8a5d8be72a259c788c46f90f638ed5b6c2dea89b14b75597c

    • SHA512

      86150d6ff2164189fd42d240ada970d6e0fe136878b81b240b2de01fa5257c539890a6a92555f646563bb27293f6d682fdd835c119ea12803862b3ffe5af3904

    • SSDEEP

      49152:UM1jeOvZ94MypISORa1FvcaH1kTYZLflhOYhJXJ:UEeOnmIFa1FEaSYZTlhOYhJXJ

    Score
    8/10
    adwarediscoverypersistencespywarestealer

    • Registers COM server for autorun

      persistence

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks