6775c6fcc198a8a183bf1197908734840a1b41cbebac78ce0accd354b02bdbf4 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

ChromeSetup (1).exe

windows7-x64

7

ChromeSetup (1).exe

windows10-2004-x64

7

Sharing

General

Target

ChromeSetup (1).exe
Size

1.3MB
Sample

240218-tmwhtsbh7x
MD5

fcb6fc182293d0ebb91a01f85ac87961
SHA1

47a51a605fc13c45c1824a9d95b25f3e585d5e35
SHA256

6775c6fcc198a8a183bf1197908734840a1b41cbebac78ce0accd354b02bdbf4
SHA512

024fd8ef778140265dd3c2300552dbd8974e1c9239ad7faf595256bfffa0293467dd6f56292a9db2177af683d49b8c352a7b25ec92b10736d1246d72ce282dd0
SSDEEP

24576:PJvKzcVkyEq9DRho1jFP8ltPP01Ws7+wFPEl9ix4fpUzoQDt+egElxdqFWVCGC:FKzcCyEq9DRho/ctH01Ws74rA4RUBDHo

Score

7^/10

discovery persistence spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

ChromeSetup (1).exe

Resource

win7-20231215-en

discovery persistence spyware stealer

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

ChromeSetup (1).exe

Resource

win10v2004-20231215-en

discovery persistence spyware stealer

windows10-2004-x64

19 signatures

150 seconds

Malware Config

Targets

- Target
  
  ChromeSetup (1).exe
- Size
  
  1.3MB
- MD5
  
  fcb6fc182293d0ebb91a01f85ac87961
- SHA1
  
  47a51a605fc13c45c1824a9d95b25f3e585d5e35
- SHA256
  
  6775c6fcc198a8a183bf1197908734840a1b41cbebac78ce0accd354b02bdbf4
- SHA512
  
  024fd8ef778140265dd3c2300552dbd8974e1c9239ad7faf595256bfffa0293467dd6f56292a9db2177af683d49b8c352a7b25ec92b10736d1246d72ce282dd0
- SSDEEP
  
  24576:PJvKzcVkyEq9DRho1jFP8ltPP01Ws7+wFPEl9ix4fpUzoQDt+egElxdqFWVCGC:FKzcCyEq9DRho/ctH01Ws74rA4RUBDHo
Score

7^/10

discovery persistence spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Modifies Installed Components in the registry
  persistence
- Sets file execution options in registry
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistencespywarestealer

behavioral2

discoverypersistencespywarestealer

© 2018-2025

Terms | Privacy