Overview

overview

8

Static

static

be7a964ff5...3e.exe

windows7-x64

8

be7a964ff5...3e.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    be7a964ff5ec64b8b77322ff965645ea010c1575158bdcf91178c42a4cad833e

  • Size

    2.1MB

  • Sample

    221125-yvbkvaeh3v

  • MD5

    6c6819c786d49d0cd72e85df5bf2f5c0

  • SHA1

    bc609907db83e6fc7bf50c48a3c3429fc4a67d0a

  • SHA256

    be7a964ff5ec64b8b77322ff965645ea010c1575158bdcf91178c42a4cad833e

  • SHA512

    6051991c78e243e571852615082edf56380d4a746014e4a288539b70e321fe2c1b9041086f295bc3f6dd82234e451e1500c43a4af56a0fd9dcd21e75c0b30a50

  • SSDEEP

    49152:h1OsPNB2tcyUoc3slSeZrg1JclQ35sFDRD:h1Oi36Eoc3UK0bx

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      be7a964ff5ec64b8b77322ff965645ea010c1575158bdcf91178c42a4cad833e

    • Size

      2.1MB

    • MD5

      6c6819c786d49d0cd72e85df5bf2f5c0

    • SHA1

      bc609907db83e6fc7bf50c48a3c3429fc4a67d0a

    • SHA256

      be7a964ff5ec64b8b77322ff965645ea010c1575158bdcf91178c42a4cad833e

    • SHA512

      6051991c78e243e571852615082edf56380d4a746014e4a288539b70e321fe2c1b9041086f295bc3f6dd82234e451e1500c43a4af56a0fd9dcd21e75c0b30a50

    • SSDEEP

      49152:h1OsPNB2tcyUoc3slSeZrg1JclQ35sFDRD:h1Oi36Eoc3UK0bx

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks