Overview

overview

8

Static

static

23c146c7b0...71.exe

windows7-x64

8

23c146c7b0...71.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    23c146c7b092d117cbcd9c8a500c3883425efe0a554d3ae2fcc34f70ed2b3771

  • Size

    2.1MB

  • Sample

    221127-hjng9sfg62

  • MD5

    1f6a447e56b5051785163f156f48f7d2

  • SHA1

    5e359ce8769df3b1b272d75cd30e2d756e4ed267

  • SHA256

    23c146c7b092d117cbcd9c8a500c3883425efe0a554d3ae2fcc34f70ed2b3771

  • SHA512

    537ecc189f5a45eb479df4b157ab8c03163ad2c31f0c6b10c1de781040558df9278b560e8e54d44cb602efe09f14524624e9050c8737d371ba8825d9f43d3fd6

  • SSDEEP

    49152:h1OsXNQToNVxbNrInKtDSwSm7CXH9e7GPszffW572WREqVMWaE9zSuu8Epr9:h1OoNQUNVxNpSmGXpmfVCU

Score
8/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      23c146c7b092d117cbcd9c8a500c3883425efe0a554d3ae2fcc34f70ed2b3771

    • Size

      2.1MB

    • MD5

      1f6a447e56b5051785163f156f48f7d2

    • SHA1

      5e359ce8769df3b1b272d75cd30e2d756e4ed267

    • SHA256

      23c146c7b092d117cbcd9c8a500c3883425efe0a554d3ae2fcc34f70ed2b3771

    • SHA512

      537ecc189f5a45eb479df4b157ab8c03163ad2c31f0c6b10c1de781040558df9278b560e8e54d44cb602efe09f14524624e9050c8737d371ba8825d9f43d3fd6

    • SSDEEP

      49152:h1OsXNQToNVxbNrInKtDSwSm7CXH9e7GPszffW572WREqVMWaE9zSuu8Epr9:h1OoNQUNVxNpSmGXpmfVCU

    Score
    8/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks