Overview

overview

7

Static

static

3

14254cfbbe...d9.exe

windows7-x64

7

14254cfbbe...d9.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    14254cfbbeed48ab0123d3c0fc38d1d9

  • Size

    1.4MB

  • Sample

    231225-k8wlaahbc9

  • MD5

    14254cfbbeed48ab0123d3c0fc38d1d9

  • SHA1

    2c4a4445493b92ec809d6ba8de90ba29bd653478

  • SHA256

    2397b65795c70297e23da3bdaf94cc9ce48f46d071634d106a7b9011cb9cba21

  • SHA512

    3ac56574b1232d513f963446fa5d445fb21928188c86b7e447b0fe9c20963365c1621431e7299d3181ea380560bfc264688a5fa06ccbb3d949df6379c09e18dc

  • SSDEEP

    24576:C/3ZkZTe90P+HixjqI55vPBAP9Yn20dgMASQ93U6+dH5i/Kv9c7Wws:ykZoAfxjqa5Xyo5h6+C/AO7u

Score
7/10
adwarediscoverypersistencestealer

Malware Config

Targets

    • Target

      14254cfbbeed48ab0123d3c0fc38d1d9

    • Size

      1.4MB

    • MD5

      14254cfbbeed48ab0123d3c0fc38d1d9

    • SHA1

      2c4a4445493b92ec809d6ba8de90ba29bd653478

    • SHA256

      2397b65795c70297e23da3bdaf94cc9ce48f46d071634d106a7b9011cb9cba21

    • SHA512

      3ac56574b1232d513f963446fa5d445fb21928188c86b7e447b0fe9c20963365c1621431e7299d3181ea380560bfc264688a5fa06ccbb3d949df6379c09e18dc

    • SSDEEP

      24576:C/3ZkZTe90P+HixjqI55vPBAP9Yn20dgMASQ93U6+dH5i/Kv9c7Wws:ykZoAfxjqa5Xyo5h6+C/AO7u

    Score
    7/10
    adwarediscoverypersistencestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks