6ae1a778523203660d1c300dfca88c14e2ea012e417a31238f6b312cfc3902f1

Sharing

Copy URL

Twitter E-mail

General

Target

firefox-112.0.1.tar.bz2
Size

76.6MB
Sample

230417-3s789aac3s
MD5

8cfe259aa7ba29c19395be0a5aa6b61f
SHA1

9bb43f2e8eaacbb49913a413081e77630a0a2b16
SHA256

6ae1a778523203660d1c300dfca88c14e2ea012e417a31238f6b312cfc3902f1
SHA512

fab6bc1026c7e8ddef7f959526d78f5892d25cd2274818317e1c584082f402d41a0de64a08d5d49177561ce9a68bfc24e6f20f878fa12410d655ce1f0978b6da
SSDEEP

1572864:S+5ztMeKiVF+gfr4xBLzhC/shObTSdCdQlVyQmk+k2ViLHhd:T1V+rNzgEhDc2lSxVwHhd

Score

8^/10

Malware Config

Targets

- Target
  
  firefox/browser/features/[email protected]
- Size
  
  371KB
- MD5
  
  3f04924cdb78db0d775211ecbd6c140b
- SHA1
  
  84b80f51cdbeea58bf47c0bb3a331980d1ba88e6
- SHA256
  
  8c538e2b8041dc4f4da48c7f241b9aef3b9c38ce5b4d9d3387489dfa46eba000
- SHA512
  
  a0f5ac17360b7a97282affc27177ee07052df3c112a0e57a1d88d91a6bb8651a37dbb0055c6c5cbcb60799ce15ac21f1cb69ce00137158dc847705e1a7ac2fbc
- SSDEEP
  
  3072:ChFNVI+Xx07LmvripM0+Hhp1PDkcLP+RXiJ+vQqp5HW:EXkLmvOpM0ehp1PDkwmYkp52
Score

8^/10

discovery evasion persistence spyware stealer trojan
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1
- Target
  
  firefox/crashreporter
- Size
  
  251KB
- MD5
  
  52fb7d890583754c4a119140f8b0d4f5
- SHA1
  
  bd33d635595ee211a24bea4eda363bcee236571d
- SHA256
  
  a7fdf5f4677a26b414281d1b61c9b0095555d9ab62e6a682b40defa21dbfd1de
- SHA512
  
  ed105ee83ec176d021d2df2398c59974c12b124e3821299da9fc1015f169a5c7559a5f38319b437831b178bbafa7644249195674e57a06bff49532ffd963c287
- SSDEEP
  
  6144:5jH04CoMzQ3rNhBrSmXU///bCzinaTgZPhbox0+oPSJ+Zz0lW8l50H:5jLCDE3rNhBrtU/nbkiaTg/bQoPSJ+qu
Score

1^/10
behavioral2
- Target
  
  firefox/defaults/pref/channel-prefs.js
- Size
  
  429B
- MD5
  
  3d84d108d421f30fb3c5ef2536d2a3eb
- SHA1
  
  0f3b02737462227a9b9e471f075357c9112f0a68
- SHA256
  
  7d9d37eff1dc4e59a6437026602f1953ef58ee46ff3d81dbb8e13b0fd0bec86b
- SHA512
  
  76cb3d59b08b0e546034cbb4fb11d8cfbb80703430dfe6c9147612182ba01910901330db7f0f304a90474724f32fd7b9d102c351218f7a291d28b3a80b7ac1e5
Score

1^/10
behavioral3
- Target
  
  firefox/firefox
- Size
  
  14KB
- MD5
  
  0064c1c8a38d92aa70ecd8c3cdc767d6
- SHA1
  
  e615b5539858e87c66f777ecc735bd3212f366a7
- SHA256
  
  f705810fc6f43ccfc6a86c622dda8d7587db36a4d88a722253d202318de1b718
- SHA512
  
  bfb05a586fdd76c27d0d67ac53e8809b091c8429e693c310cec198cf7d3616dc9cef7f0e67a4ecb3f9b8160b27116f6cd2057562a9ffadaf9618dc17ff16c4be
- SSDEEP
  
  96:GHYGTSpBt4ERKj81fdoGcq7bRhkSpaSDkX4uTV6u9:GHmyERKj81fduqrkSpfDkX4uT
Score

1^/10
behavioral4
- Target
  
  firefox/firefox-bin
- Size
  
  627KB
- MD5
  
  135adffed8f9c8c3d7f0a495a9f1f2bf
- SHA1
  
  a41b4e68e7b5357f1be63ba006b867ed28562d0b
- SHA256
  
  06942aee822c337da6c402d8f82884b2ca597898543d3a626682af2635134ffd
- SHA512
  
  fd5a3d72bc7501f1775d095c1d550e65b776c6000c03e9a8d893a9839defcbdcc10e00112b436f723a517e282eff7932f8d06b4c145e4b0398c5a1ec7a1f3faf
- SSDEEP
  
  12288:l8LM8Uh3VeNzNO3keB8DjHKLNIM4DEF8IRRbb:l8LEh3+cZ8DjSNIM4DEF8IRRbb
Score

1^/10
behavioral5
- Target
  
  firefox/gmp-clearkey/0.1/libclearkey.so
- Size
  
  94KB
- MD5
  
  97767613b4f8795de2099e0f58acad98
- SHA1
  
  6aab8591147c2cf6af3561b3774361292ec080a0
- SHA256
  
  c2637dd3ea2bf3abf74f11be6ace4c16d6b5b6b545cf5bedd69d2690fcc1b36b
- SHA512
  
  131691cf21b123f7d9dc3202234e0854bb471a78d637750717fd1c2b34dc5ecbb837f0268b04b0e2b0ac2a678fca012c23851e6177251591c3416e480274afe0
- SSDEEP
  
  1536:SabSX0KofgfnHWi/kn6JJDFlv1s6LikwxaOBrBPAHtgXqki3tMQ2qLbKu:SAS5oWnHWD6JJDj2DxaOBrBPAHtgXqkZ
Score

3^/10
behavioral6
- Target
  
  firefox/libfreeblpriv3.so
- Size
  
  802KB
- MD5
  
  6dc34556bdb1e7721b1525af59ef59e5
- SHA1
  
  b7729576bf4ee9c47f7fece06d5f65d1563386c4
- SHA256
  
  7325e595a7dfe5d6bd461dbe55f423bc17490eaec691c77cf2115fe96cafe80e
- SHA512
  
  ceaaf940a7b6e7ea83ae300710234cd1a4f066555cf3839649be631d4eb0cd7bb8b5db233be4108c49798fbdaf4424853f7422ef711c4ad89947c5f79c582238
- SSDEEP
  
  12288:PWN19C+h7voqgHj9zEk+UNx8li1MrHi1AGClhIx2CBU2Zl8qnhY:PW447v/Y9gAMrHjZhIxra2I+hY
Score

3^/10
behavioral7
- Target
  
  firefox/libipcclientcerts.so
- Size
  
  359KB
- MD5
  
  0f6e9721b31a07018a84d442f27feef9
- SHA1
  
  df4a3bbbe42a7c8bef8d0cf14de79b0ca0877c02
- SHA256
  
  3ba64873fb87e77127da58fbabeb45009a46883f969f83a3c111224766994089
- SHA512
  
  992f4f2bc864f81d210d5c77dc76a4882883665cb3ce3471d7cd63e10b6641e71d93a9d132d8ac81a4888baf7147d7848c1bb90674c80f17997c76db66031186
- SSDEEP
  
  6144:nZ27v8bEgT7vVmSrRwppdU/DaRQkmWOItxrplbLvAA:nO8bEg1lwppdU/DabzrvLvA
Score

3^/10
behavioral8
- Target
  
  firefox/liblgpllibs.so
- Size
  
  42KB
- MD5
  
  59458817b15bb75626b9e2470fa95488
- SHA1
  
  7154d6d28b72396dd1036f00528defa226d25dbe
- SHA256
  
  be06cac506cb9f9b4498804cc9edc14bcc426cfbc19e65a9ff4ab0e13e5595c0
- SHA512
  
  14d7b5e89452a57b2c1409570631d796a4b55eb720e86e91f5f4d02c82552572b23ea8515b5e9f2c7afc871a60e33f355c32de96c2fc22d9c84738d8df0e5946
- SSDEEP
  
  768:R1DTCJbUnmTEsGK4sgTFnr2D2p0or95RiG6B2p1HBQ5pi:D0hbGK4seFnrvp0or95n1HBqw
Score

3^/10
behavioral9
- Target
  
  firefox/libmozavcodec.so
- Size
  
  3.7MB
- MD5
  
  64da4a4be966533e85b81c5b0a9a1cb0
- SHA1
  
  c52074d2a5f8cb6d819c54ab8ba22bdc270c7fc7
- SHA256
  
  7942f4b5e5decfc087ecd95bc3dc1ed8bf896216163ee614b6526f0a7ff54c69
- SHA512
  
  fca6a2b8e6c106cf5c15370a5ad11621b6eea3bf31413d26fabe7991f0b078f90e612ed0dba30d8780fba400d88285ba68e51804d020440ce0706c0b3da273ba
- SSDEEP
  
  49152:LvyEmkw3eHcii85FpyEKPhNVVdTKwtFYvdEyvOSiUGhE3izCWeIfbrhlXGkog:LvDmkw3e35FpuV9wEymUGwi2WeIWw
Score

3^/10
behavioral10
- Target
  
  firefox/libmozavutil.so
- Size
  
  234KB
- MD5
  
  8a76f52c094290c60a6994a1e27b30f7
- SHA1
  
  7dd423180f3ade10bd9fc69eff00767933ffc918
- SHA256
  
  707297442e9c92fb746389579fe0545e38c1ff8d0bfe38c8d9e52f247abb378b
- SHA512
  
  e47ad8446dfcca4736d84d844340f665f454decdf026d1b157447f5e58d7ccebdab648c2e42a6c71e0dff9e9064ba1d1db20bd38753b95048e000654b6e0df14
- SSDEEP
  
  6144:dAzMmFolch2ShfC5f1HDcMlhwB8bP1dhVGHB5Zm8H:eMmFbQofg1HDRlBI
Score

3^/10
behavioral11
- Target
  
  firefox/libmozgtk.so
- Size
  
  13KB
- MD5
  
  380d5d4853d5f645b53d1264993e8519
- SHA1
  
  171700528afaf9667c2c4fc1ad0adc60db784448
- SHA256
  
  82a2b4806f313cf66abfa05f8a6ccdbaa516effb1cc875f1307f81dd4faa1ac9
- SHA512
  
  a1c5d40ada076124fccd19f84678e15d6305a1b08aa2df8f38ed1d61720cc09274879d3fc96787765a43fdfd74f8c903de660a50f8e66173fcbbd2a6ab8193df
- SSDEEP
  
  48:R4obS52MBWB7pQmpoj365YgdJJo0jA7o1ijSnKuP:R4oGkMBWB9Ro7qY68M2wKuP
Score

3^/10
behavioral12
- Target
  
  firefox/libmozsandbox.so
- Size
  
  114KB
- MD5
  
  b742b0b3a3b3a958a25a3e1fd438f45a
- SHA1
  
  b3f2746660cb193499c9b2d6fc03e3ecfb4529ee
- SHA256
  
  de75818061cff1009d9e64990a65897b8deb59f303b9fdc42d244f3e163be783
- SHA512
  
  3689f41d3a683b229f46dc1df8807317440221a6e7b902395069c4ec718dc3e553cf0e5f96fdf45b72eeecc523ddcb23672f7006275af4c61f2d70455c24dd0d
- SSDEEP
  
  1536:77g7eqpKk1B/gfM39fDml00fhFgmu/aNyLYwX3faDQF1Kk2D:/AppNgk3ka0fhqmu/aNJUfTE
Score

3^/10
behavioral13
- Target
  
  firefox/libmozsqlite3.so
- Size
  
  1.2MB
- MD5
  
  950785504fabbe945cf14f143f88cd68
- SHA1
  
  4ffde95629633e76475cfb8b5d5ea1edd592be30
- SHA256
  
  8b3fec43d3a53ea7fc92f51705ddb02826b61732a237102094c669ec6051fde0
- SHA512
  
  c91cdf5a176a94ec264f726d8bdcd4643e3fe3645abcb41ed76dfe71c2ef2e640d2ea793da85dd963402d2d280bc09ddac55cd551bbcd555291f2274448b5e5b
- SSDEEP
  
  24576:WSKHV2S4u6+KiI67soJKnP6Gt/07SqiTa5M5qYoM1M3dYXIISnn:WSKHV2S4kKIwsKnP6Z7SqBM5lo1teIII
Score

3^/10
behavioral14
- Target
  
  firefox/libmozwayland.so
- Size
  
  17KB
- MD5
  
  7a531c0a014e4f47e75b9332903f2b42
- SHA1
  
  ad3d998ac21b9803d3c1c28b91f2dee1efda428d
- SHA256
  
  0218b3ba8588a5b3d1f70d6bd7df9922c6c994b6cc3ff7fc5729051f9fafc4a1
- SHA512
  
  b2c60fbb9eb5f5f5ddb43093cb48c487b4d59fdb3df760f089129a6016906632881343d896a24b03dd76c045537f6b1e08fd88b03aebe33ed1c96b1bff6559f4
- SSDEEP
  
  96:RwA8Ir4NfaPmESBWBlH7+iwQgCuqZMr4s6HsqZx+gJybILqu1:RYNSPmB8vH7yQbZnDXZHys
Score

3^/10
behavioral15
- Target
  
  firefox/libnspr4.so
- Size
  
  217KB
- MD5
  
  a8f96cdbbac94c68799c413adca39a62
- SHA1
  
  313487bbe427e3b5be2fc03b11d6f7296fb44ff3
- SHA256
  
  c0b95002cc9f94d40aaa78c488cdab204bb3b12d4df2b08a5bf419ab534edfc7
- SHA512
  
  f160dd8655cd878afdd9256d190ac93dd3a50cf6484d025230afe00ef32bb595945faed657e8ffdad7daae6a9f1df70ec134eb750ddb7c40330233d9a4213bf4
- SSDEEP
  
  6144:/VBsGnCyK1XihEPNTmsZUuT2OxD9bWvYNx:/VBsGnCyWiQNTTqIhbYYx
Score

3^/10
behavioral16
- Target
  
  firefox/libnss3.so
- Size
  
  690KB
- MD5
  
  c16569930adbe21bd35a307dc299c421
- SHA1
  
  c567fd5fcb81bc7ed333bca1a6503d3308c984e9
- SHA256
  
  178cf6129e8aa0aeb99990614348fef32a9ecf21e561b471ba8ddfabe20e2e94
- SHA512
  
  ef62be86ed6081c0f8f97f121902108fb01490edd8b44db2527bef043eef8a8488d51edd61459830461cb45f4aebc34679b3653afc6b2d1d4f3ca61a7d6eb7de
- SSDEEP
  
  12288:Z2NQvnfpz/ZqJSukzKa1dk/9c/9yWMSu3zFvhv:Z2NQv1/0JSukzKa1Ac/9yWMSYv
Score

3^/10
behavioral17
- Target
  
  firefox/libnssckbi.so
- Size
  
  519KB
- MD5
  
  56cf7d734a5989243c58b7d399550de4
- SHA1
  
  89c95e7f909ebc6a47d064373426c33f8231a9ba
- SHA256
  
  ce6cd518206c40375c23aa511a1407951a6e1a4651adca5e61c1f150b0aaee27
- SHA512
  
  e9bc105037ac3e31f0ede2c1c8c0f118f073e9356c346a7d1d47231c0cb1b4ad0c1f0b9c0a798780622c4ebc8a152a3ab7db8235bc93bf7e895675218cff71d8
- SSDEEP
  
  12288:18VgNELlSoQ3/eX7oX24hj0pT+QSZwPDGHS:18Es8oQGy2uj0F+PaPDGHS
Score

3^/10
behavioral18
- Target
  
  firefox/libnssutil3.so
- Size
  
  183KB
- MD5
  
  01a22f7301d23bf32abcd1c2c130d0c3
- SHA1
  
  5e05c8884cbab2c5180b3661d6632dadfc0400ed
- SHA256
  
  2720cb786a147a75330c322567ed7582e4b545d0ec72f958ecda636499b2c08f
- SHA512
  
  fdfd84cb40c5afdedf1bb4dfef7dc0517c93d0acceab52ac91c4589bf7fc4cfcb3b45ce4c9826222a1de3261a683f472c46133fd0f269eea42da372332cd3db9
- SSDEEP
  
  3072:H9dDiHLDgPEJrAvbbdZ68SPrFuch1GWrTVVdAtM0hH3H:dacPEJrAjbdZazF7r5VdAtM0hH
Score

3^/10
behavioral19
- Target
  
  firefox/libplc4.so
- Size
  
  22KB
- MD5
  
  a3990b522385a985ada2e6c6e3f791f4
- SHA1
  
  915495f697c0bedf4e8959357fd1e83ebce6726a
- SHA256
  
  0f1aa5276fbd87e2fb00fcded144bd362bf610f29cdd5a44e929f4e4cf40233d
- SHA512
  
  fc5cfa373154c82b8d320a428c65a27a13de31201b777f39a64e76bf456e46ea6fdbcefe66dd741e7845c0439cb72223244b946b780f174ad74e2c006809d28b
- SSDEEP
  
  192:RO6B/L1L6o8CItDIVr32oTMkQC2ScWcY39snnn5jZ4jNqtpvJq5M:f3WDorqDC2StcY384jgJq
Score

3^/10
behavioral20
- Target
  
  firefox/libplds4.so
- Size
  
  14KB
- MD5
  
  884afdfd293ceb8e88752458c849d6c7
- SHA1
  
  0555a43807850d766316088d8b469e69218d7556
- SHA256
  
  a08c35bb0c22e0282ac79140cb09f032e146e101e35bfa7646d955f5a2d52a2f
- SHA512
  
  ae9c04e9524643ef2c3fbb3c1834965297e9ea03b1d01839b5cea0fb8d5da09b4c702cfdb640df2a36758cb529a322d45f9e2160f0d380c5d8f7bf75f2f14001
- SSDEEP
  
  192:R2AziXhr8fk0LwW6flomtso4H7eS69bnTMIlMGsWA:oAe0k0MW6f5ux7eBNMGA
Score

3^/10
behavioral21
- Target
  
  firefox/libsmime3.so
- Size
  
  159KB
- MD5
  
  6a3f8e781058b8674ec23c0f181d74e4
- SHA1
  
  b23d3e198c939b3981e91a5c6927d67b7acee758
- SHA256
  
  b75e823e834f8ac279cb6f9387c1e29eac084a8f019d3bcb0b27f8ff9b03d2ae
- SHA512
  
  b229a1f3de41fe0db915b34a60079361cbaea02910f165f35930b277fe9f7578e556f2cee8afe5a7331e44341b135c7e7459c865e264eeaf67fd28cdabc0f10f
- SSDEEP
  
  1536:eNg2yy5Ch5MGSNwKPYkenRxg1CuLpY2YMWtUfSrNB67xoRiuDZ+3rjpSi:qg2yy5CjtwCZnRxwVaL67SEBSi
Score

3^/10
behavioral22
- Target
  
  firefox/libsoftokn3.so
- Size
  
  314KB
- MD5
  
  63c6c11fb3a0db768ed80f4e67312d2b
- SHA1
  
  91af5a6ccf9e222ca2c059e78e17f24272757a44
- SHA256
  
  5fae9c7fa2d94db59f784f8cdabd109079cc27eb6a222c0cef4dc21791f60912
- SHA512
  
  635c703b5fa2aac20c12c2138ebe115654da5465cc2c747bd9b4a36d1568ac46f739cab7f1997e9db2360d56b15830c02bf55aa827fabdcb6e090fa73fd131f9
- SSDEEP
  
  6144:8Y13Ftw3Oy3AlaVJpqqbLArP/GAMYByb6tZmha0vFcQQTyFMcsD6T7g2DvqYz+xc:HP/GwsbkQU0vN7FM9KMOvqYz+xnS
Score

3^/10
behavioral23
- Target
  
  firefox/libssl3.so
- Size
  
  404KB
- MD5
  
  aad70afaa1136e336f21ab151ec94019
- SHA1
  
  dcdeea5e72eb6857ee41cae9721aba78feacfb88
- SHA256
  
  dd3c461d104ca481d4329e26437b600b7a693bd1454c15f73c89f658eea41108
- SHA512
  
  6983b57314f1f996f528ea26d0cf31ef32f4a0fe270a75b416700c762c91affd5a6537fdb433578f9258c7cc67ed81ef2ab7191e47d160e5fdf9256851d70eee
- SSDEEP
  
  6144:6+BhewScsmtcKQdRMzFaHHqNOgsXouHYZEtjFe5qikiG:6+B3SqcpdRHHqNCouHYsFYVkiG
Score

3^/10
behavioral24
- Target
  
  firefox/libxul.so
- Size
  
  149.7MB
- MD5
  
  1748299451b1a3f25e9988e65e5c4a51
- SHA1
  
  29b86f5653922bbeb2e4776a19a1ab12a00d1ad6
- SHA256
  
  16b2161eb90dc05dfa0308bfc4dc1048d689194b647d5007373fb66d07f2fb5f
- SHA512
  
  e3259cd937241b10e85096f9e9cdc71397a453c49c7787e8383f7e588b6329af0550528adc6348454ccf1a0e65ac3386ea68ba86e1c2e7db248c305fa13fe63e
- SSDEEP
  
  1572864:NeEZcWh2RsHIvpqcRy86wLtnxTmMC6OGS8gyCi6I6Q:omLi6IX
Score

3^/10
behavioral25
- Target
  
  firefox/minidump-analyzer
- Size
  
  1.4MB
- MD5
  
  b22ebc9e440b99317e1bc444c769bd52
- SHA1
  
  a0c742fda51de2376615af6b4f39e8d9ea5f41d4
- SHA256
  
  bfd3ea95773b3c8d61aa9689d6b38d9ef1bb600d8b77ef547aece84335722c4c
- SHA512
  
  104fa2aa17adce9d3800b502e8a3ca34d5a740405b752852ed9c179b137dd56a5b936d18655ec88369658a4f7a9870da361bf18ffffe92ce97b4675b7cce0c8c
- SSDEEP
  
  24576:8mxqxhRc8pRbBSx5SMKzH9/aMaUzEF8NRqbTsIe1:84qxhRjBSx5SMKzH9cUzEF8NRqbTsIe
Score

1^/10
behavioral26
- Target
  
  firefox/pingsender
- Size
  
  683KB
- MD5
  
  6752cb0f3726500ed9564e4b2c5c475d
- SHA1
  
  8376bcfe9af49b0d8a43e677d812b85335bd915b
- SHA256
  
  c14340cd5dcf6e715101ff793aaf1facae1da12f67ebd4614dbb5090d2fcc254
- SHA512
  
  5a7964b2c3fd68689e69ec1acb62975c2dc6519181f5c048646ed199026c6ebd266cb9d823904bded9e0c8bb7e3283ca46271bf31318b5d83c296386af9c0714
- SSDEEP
  
  12288:lHqc28ABxIhl4WJ85/05fykLLLL86VlXKEF8gRwbc2Lm:lHqcm4FdLLLRVlXKEF8gRwbc+m
Score

1^/10
behavioral27
- Target
  
  firefox/plugin-container
- Size
  
  619KB
- MD5
  
  d84ef6cf75877ef0178ac744cd31d5ac
- SHA1
  
  f4679dd29b71c2e571bac4971434c72adce954ec
- SHA256
  
  d29f57f9ba532c3fb18bf00829d02c3180e582a5da302eef102165484b16066e
- SHA512
  
  ee07e2b02a4a6935ce9358268d489d7243af6c9294c9dae0daa87df71df1307ea979e230683f4e5d7a9af3b918b97f54859dceb35e1272f42dffd94f3b83523e
- SSDEEP
  
  12288:BUmTqgnetVrrD98TF11naIWjQ6c+EF88R2b:B/Th2hg11atjQ6c+EF88R2b
Score

1^/10
behavioral28
- Target
  
  firefox/updater
- Size
  
  95KB
- MD5
  
  37c1e91c6f2ee5a596f146f2d63c4d07
- SHA1
  
  298205fbcf6e8c01cfa2dbe7a5af1989daa69c7b
- SHA256
  
  ffb266fd7ab8f0749d43f1931b533160fdfe41c8ef0ca00f605bf5bea6fa430e
- SHA512
  
  39da8fb40d244db1b5ccf4587e9d2c6015d5cf5ab2fdb923a86fdeb2d989e94bfd684c9fcda431e77eac9e26c9d1a10a7c71002749353025e560efcb6bf265f5
- SSDEEP
  
  1536:gl2EqX94CCynqzzwML/v6WLK9F/7gaGMd31rDhxga:gl2EJy+LKYK9F/77GMd31/hxg
Score

1^/10
behavioral29

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

T1060

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Credentials in Files

T1081

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Downloads MZ/PE file

Checks computer location settings

Executes dropped EXE

Reads user/profile data of web browsers

Adds Run key to start application

Checks installed software on the system

Checks whether UAC is enabled

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29