Overview

overview

7

Static

static

88a187333a...8c.exe

windows7-x64

7

88a187333a...8c.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    88a187333a41f3b1b7b2839131cc6b0af86f676fa6f3d36801321c65d0d7668c

  • Size

    212KB

  • Sample

    221128-bn4ayshe5x

  • MD5

    9944d631b8c5869bfe2837e39ab7f869

  • SHA1

    b0c12497b52c9b509f36f530cd3b207417a2c9d6

  • SHA256

    88a187333a41f3b1b7b2839131cc6b0af86f676fa6f3d36801321c65d0d7668c

  • SHA512

    8e96bf203885f35cff87fb4212e00612f32ffbc02955a0a5b93a99ab15fd38d6e9b8cc162bcfce6b602e41793e6f81ca0c73a6bf6064c39f942a65e0d9ac7582

  • SSDEEP

    3072:8XOUx2elQOFn25rcnNDuZouimln9GmWYQTm0P68Hv8L8o7:8+UyTwNyZoZVDZ7/P8L8o7

Score
7/10
adwarestealer

Malware Config

Targets

    • Target

      88a187333a41f3b1b7b2839131cc6b0af86f676fa6f3d36801321c65d0d7668c

    • Size

      212KB

    • MD5

      9944d631b8c5869bfe2837e39ab7f869

    • SHA1

      b0c12497b52c9b509f36f530cd3b207417a2c9d6

    • SHA256

      88a187333a41f3b1b7b2839131cc6b0af86f676fa6f3d36801321c65d0d7668c

    • SHA512

      8e96bf203885f35cff87fb4212e00612f32ffbc02955a0a5b93a99ab15fd38d6e9b8cc162bcfce6b602e41793e6f81ca0c73a6bf6064c39f942a65e0d9ac7582

    • SSDEEP

      3072:8XOUx2elQOFn25rcnNDuZouimln9GmWYQTm0P68Hv8L8o7:8+UyTwNyZoZVDZ7/P8L8o7

    Score
    7/10
    adwarestealer

    • Deletes itself

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

1
T1176

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks