Overview

overview

7

Static

static

3

SnagIt 8/2...D8.dll

windows7-x64

1

SnagIt 8/2...D8.dll

windows10-2004-x64

SnagIt 8/A...er.dll

windows7-x64

1

SnagIt 8/A...er.dll

windows10-2004-x64

1

SnagIt 8/D...64.dll

windows7-x64

7

SnagIt 8/D...64.dll

windows10-2004-x64

7

SnagIt 8/D...64.dll

windows7-x64

7

SnagIt 8/D...64.dll

windows10-2004-x64

7

SnagIt 8/D...64.dll

windows7-x64

1

SnagIt 8/D...64.dll

windows10-2004-x64

1

SnagIt 8/D...64.dll

windows7-x64

7

SnagIt 8/D...64.dll

windows10-2004-x64

7

SnagIt 8/D...80.dll

windows7-x64

1

SnagIt 8/D...80.dll

windows10-2004-x64

1

SnagIt 8/D...80.dll

windows7-x64

1

SnagIt 8/D...80.dll

windows10-2004-x64

1

SnagIt 8/LFCMP12n.dll

windows7-x64

1

SnagIt 8/LFCMP12n.dll

windows10-2004-x64

1

SnagIt 8/LTDIS12n.dll

windows7-x64

1

SnagIt 8/LTDIS12n.dll

windows10-2004-x64

1

SnagIt 8/LTSCR12n.dll

windows7-x64

1

SnagIt 8/LTSCR12n.dll

windows10-2004-x64

1

SnagIt 8/Lfpct12n.dll

windows7-x64

1

SnagIt 8/Lfpct12n.dll

windows10-2004-x64

1

SnagIt 8/Lfpng12n.dll

windows7-x64

1

SnagIt 8/Lfpng12n.dll

windows10-2004-x64

1

SnagIt 8/Lfwmf12n.dll

windows7-x64

1

SnagIt 8/Lfwmf12n.dll

windows10-2004-x64

1

SnagIt 8/MFC80CHS.dll

windows7-x64

1

SnagIt 8/MFC80CHS.dll

windows10-2004-x64

1

SnagIt 8/MFC80CHT.dll

windows7-x64

1

SnagIt 8/MFC80CHT.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08-03-2024 05:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SnagIt 8/DLLx64/SnagItBHO64.dll

  • Size

    63KB

  • MD5

    cdbe6d64457b58149c61cd2bf2ddd9f3

  • SHA1

    91b93808d6c5415a70833e5f873b01e4c1b578e5

  • SHA256

    83307e40b3a5c635b81edbbb133472014f9113923c3ef5680cfe9378a950efed

  • SHA512

    f0044cded05cf946cc891b76210c71bba1ca2c0f9990c9ab7d5b37531eec6fb852c0cdda144cec8f523a71cf6d9e9e62a8c45b1af730149fa6ba997592eb5a50

  • SSDEEP

    768:RQIK2kxllsXGqG9b/5qW6AtA0zDA8z890tRancqdoZq2nXioO520euvgD+2L3CbC:JkTllqG9b/gFyDDhPoqr1O524oD+22C

Score
7/10
adwarepersistencestealer

Malware Config

Signatures

  • Registers COM server for autorun 1 TTPs 3 IoCs
    persistence
  • Installs/modifies Browser Helper Object 2 TTPs 1 IoCs

    BHOs are DLL modules which act as plugins for Internet Explorer.

    stealeradware
  • Modifies registry class 51 IoCs

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s "C:\Users\Admin\AppData\Local\Temp\SnagIt 8\DLLx64\SnagItBHO64.dll"
    1⤵
    • Registers COM server for autorun
    • Installs/modifies Browser Helper Object
    • Modifies registry class
    PID:3168

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads