Analysis
-
max time kernel
65s -
max time network
99s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
24/04/2023, 13:48
Behavioral task
behavioral1
Sample
sample.exe
Resource
win7-20230220-en
3 signatures
150 seconds
General
-
Target
sample.exe
-
Size
179KB
-
MD5
17a9e53240082bd288d35b02986769a0
-
SHA1
72d12b8cbb5bcbe3c6991c4a36c83bee36faeecb
-
SHA256
d18a31b0b3d20a86fc0647d7f47332d648499d52eee68d34857eec61f3b042ce
-
SHA512
83cda2d6ad54e3155faa909bed359742e5bfba7341456a559301c4f9826d18be8c17ebd5286590d5e67ed931db6b08d16e135ea96ed8da6060818bf554aee3b4
-
SSDEEP
3072:FzES61an+OJHwoRtO/tmJQDFoWTlfUwOXVK/mOJdtOQbj7DG3OybUTywhjucYKng:FzlBHwoREuGcVMmOHkKD3yITrjucYKng
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting 2 TTPs
-
Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.