Overview

overview

8

Static

static

1

PerfectCam...01.exe

windows7-x64

8

PerfectCam...01.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PerfectCam_2.3.7124.0_Subscription_PFC231124-01.exe

  • Size

    137.5MB

  • Sample

    240416-k76pvsfh91

  • MD5

    b33c62af31c864aa581919f2642e0ea9

  • SHA1

    4c6bc5b7d1dca7c7ea0fe9faf1e9a3786095f66a

  • SHA256

    51f152320b13eeb19538420087a5221e704f03acf7aebcb96751a51d762c8e5d

  • SHA512

    90dc666a929b1ea192139216839af26d2f35795b4035c0088396f805620a3e0685cbdf157fec381ebec1611ff9f6ca0463a92a87faea63068ddc8926cf7e4cde

  • SSDEEP

    3145728:+KAqbDYtCIq/Uiez1yHPO+eLEYvnLBHPVFee7tsZaIRNrBAgjtWaZsdkGpsF6nZ2:B9U0//exyre/NFee7tsZaIrif9d/sFU2

Score
8/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      PerfectCam_2.3.7124.0_Subscription_PFC231124-01.exe

    • Size

      137.5MB

    • MD5

      b33c62af31c864aa581919f2642e0ea9

    • SHA1

      4c6bc5b7d1dca7c7ea0fe9faf1e9a3786095f66a

    • SHA256

      51f152320b13eeb19538420087a5221e704f03acf7aebcb96751a51d762c8e5d

    • SHA512

      90dc666a929b1ea192139216839af26d2f35795b4035c0088396f805620a3e0685cbdf157fec381ebec1611ff9f6ca0463a92a87faea63068ddc8926cf7e4cde

    • SSDEEP

      3145728:+KAqbDYtCIq/Uiez1yHPO+eLEYvnLBHPVFee7tsZaIRNrBAgjtWaZsdkGpsF6nZ2:B9U0//exyre/NFee7tsZaIrif9d/sFU2

    Score
    8/10
    discoverypersistencespywarestealer

    • Drops file in Drivers directory

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops desktop.ini file(s)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks