Overview

overview

7

Static

static

c7dbd9c05d...80.exe

windows7-x64

7

c7dbd9c05d...80.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    42s
  • max time network
    45s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    28/11/2022, 04:51

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    c7dbd9c05d22df2d8223892703e10e586f54e3821184c3d292fb27488e014380.exe

  • Size

    973KB

  • MD5

    0092c20075b9611811a9c81a017c93b0

  • SHA1

    3df48b478766bff511823f387b6300633db62f3d

  • SHA256

    c7dbd9c05d22df2d8223892703e10e586f54e3821184c3d292fb27488e014380

  • SHA512

    0da6beb62504cd9589d7aa445e4fbcc7f5b58cf1ba7fdef775ec1a56b9802029150d68d785702bf91b58cf087af3984c88e525bb7f72f9c5f6b82ead3f5c0c67

  • SSDEEP

    24576:K+wU+0GRJBMyaosJdRnPUKGh6qltQpoRGbkZMA0uSrry7wH5:IR0GRJ5RsBPUKGhtQugkZOGa5

Score
7/10
spywarestealer

Malware Config

Signatures

  • Reads user/profile data of web browsers 2 TTPs

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer
  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c7dbd9c05d22df2d8223892703e10e586f54e3821184c3d292fb27488e014380.exe
    "C:\Users\Admin\AppData\Local\Temp\c7dbd9c05d22df2d8223892703e10e586f54e3821184c3d292fb27488e014380.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:1944

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1944-54-0x0000000075CF1000-0x0000000075CF3000-memory.dmp

          Filesize

          8KB

          Download