Overview

overview

7

Static

static

3

487b654402...42.exe

windows7-x64

7

487b654402...42.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    487b654402f2680fc21652b3c3635f42

  • Size

    1.5MB

  • Sample

    240107-j7zqwahdan

  • MD5

    487b654402f2680fc21652b3c3635f42

  • SHA1

    77beb78ed9e17bd17acc56c1a48ab649504b057b

  • SHA256

    149c2f2da94c78a3c317f0cc7c1de936517d57918c1370ee6a33aead5e080240

  • SHA512

    ea18c8ebfdb7308e94275918df42f5567c993beffe4d119f553bfaf483d31fb92924a724f65b47277a34b591c1e3b0a782fc6cb0c8d6150222992b6688792b29

  • SSDEEP

    24576:zoiZSxZ3+N/waJWdomz0mMz/wx574pCNobCISrUynM6pKHt+IqgCZ42KV9EWUGP:3ZKYDJWdoQ0JLy4pCNoGpUyM6u+IqgC4

Score
7/10
adwarediscoverypersistencestealer

Malware Config

Targets

    • Target

      487b654402f2680fc21652b3c3635f42

    • Size

      1.5MB

    • MD5

      487b654402f2680fc21652b3c3635f42

    • SHA1

      77beb78ed9e17bd17acc56c1a48ab649504b057b

    • SHA256

      149c2f2da94c78a3c317f0cc7c1de936517d57918c1370ee6a33aead5e080240

    • SHA512

      ea18c8ebfdb7308e94275918df42f5567c993beffe4d119f553bfaf483d31fb92924a724f65b47277a34b591c1e3b0a782fc6cb0c8d6150222992b6688792b29

    • SSDEEP

      24576:zoiZSxZ3+N/waJWdomz0mMz/wx574pCNobCISrUynM6pKHt+IqgCZ42KV9EWUGP:3ZKYDJWdoQ0JLy4pCNoGpUyM6u+IqgC4

    Score
    7/10
    adwarediscoverypersistencestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks