Analysis
-
max time kernel
121s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240215-en -
resource tags
-
submitted
21-05-2024 13:21
General
-
Target
544952aa8480cde66c4cf96463a1a99ad1e9f694f3727090fa3ee81365f78dc4.exe
-
Size
9.0MB
-
MD5
eb9b16e8195e5cc86ff004cac460a284
-
SHA1
173abdaa9a73cbacbafd30b2d66199631096c710
-
SHA256
544952aa8480cde66c4cf96463a1a99ad1e9f694f3727090fa3ee81365f78dc4
-
SHA512
d2432248e634a7942c9e267f87a8c78a4b3364db0fb5d526e48492b05989ecc604040148320c37eb3c7826bfbc7be3e19ff9a830ffe18677915a2bfa09786abf
-
SSDEEP
196608:nmJcDKlFBqNO+wDxURK8vyqByLdlf3hRQIgLKN:mODKlFBqAZayOclfhRQIG2
Score
7/10
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\544952aa8480cde66c4cf96463a1a99ad1e9f694f3727090fa3ee81365f78dc4.exe"C:\Users\Admin\AppData\Local\Temp\544952aa8480cde66c4cf96463a1a99ad1e9f694f3727090fa3ee81365f78dc4.exe"1⤵
- Suspicious use of SetWindowsHookEx