Overview

overview

8

Static

static

1

BraveBrowserSetup.exe

windows7-x64

8

BraveBrowserSetup.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    BraveBrowserSetup.exe

  • Size

    1.3MB

  • Sample

    230206-3z3mcabg2v

  • MD5

    0cc96db68a2c8ac22f8b9c04643b9536

  • SHA1

    055181333fafc1e528b4bc21e763d2c86ddaa3cf

  • SHA256

    ecc5104b96c45e5d6be078f582c42df0f6421d9f8e0e4e851764cc6f643c49e4

  • SHA512

    843ac0a944d7673cff95e9e9afe6c64a87084411d5eb050eadc19779b968b65c756081000c92a79a3fbad896e246b0f766e045abd8a267bcb2b433ff93f7c747

  • SSDEEP

    24576:7ahOAxa1I/3evD4ivg9otp2naFe53is7yscRG/BwPhZAsIrEDE3ePTZO8xMACQn7:2hOZC/eb4io+pSaFW3iuyhUwpZAzgDEI

Score
8/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      BraveBrowserSetup.exe

    • Size

      1.3MB

    • MD5

      0cc96db68a2c8ac22f8b9c04643b9536

    • SHA1

      055181333fafc1e528b4bc21e763d2c86ddaa3cf

    • SHA256

      ecc5104b96c45e5d6be078f582c42df0f6421d9f8e0e4e851764cc6f643c49e4

    • SHA512

      843ac0a944d7673cff95e9e9afe6c64a87084411d5eb050eadc19779b968b65c756081000c92a79a3fbad896e246b0f766e045abd8a267bcb2b433ff93f7c747

    • SSDEEP

      24576:7ahOAxa1I/3evD4ivg9otp2naFe53is7yscRG/BwPhZAsIrEDE3ePTZO8xMACQn7:2hOZC/eb4io+pSaFW3iuyhUwpZAzgDEI

    Score
    8/10
    discoverypersistencespywarestealer

    • Downloads MZ/PE file

    • Modifies Installed Components in the registry

      persistence

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

3
T1060

Privilege Escalation

Defense Evasion

Modify Registry

3
T1112

Install Root Certificate

1
T1130

Credential Access

Credentials in Files

1
T1081

Discovery

Query Registry

3
T1012

System Information Discovery

3
T1082

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks