Overview

overview

7

Static

static

3

Sеtup.exe

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Sеtup.exe

  • Size

    323.3MB

  • Sample

    240521-thfa2sbb89

  • MD5

    6df29be38e9a0db0d0ed49ea4b68457a

  • SHA1

    1dcff1dc6e28216198bc4c50c3bb107d86abac67

  • SHA256

    3a2c45ceb50e94157e6b05fa540e393a187f5151354e00356b494a4d37ca6401

  • SHA512

    41049e15a80d957d45a561e65505caa8779cdbf4cf0ef21c06c669d9d71d3e0c80c20558de833f4aa1c8f03b0348a35b85ca07556da1192faf9ad8ea049e5f9b

  • SSDEEP

    98304:ywIQH5/j2nzMZfcOU4y/7Z8fsV4fMRRiztuP3BHMOTF0:ywIsDZUTl/14sqs6MCOTF0

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      Sеtup.exe

    • Size

      323.3MB

    • MD5

      6df29be38e9a0db0d0ed49ea4b68457a

    • SHA1

      1dcff1dc6e28216198bc4c50c3bb107d86abac67

    • SHA256

      3a2c45ceb50e94157e6b05fa540e393a187f5151354e00356b494a4d37ca6401

    • SHA512

      41049e15a80d957d45a561e65505caa8779cdbf4cf0ef21c06c669d9d71d3e0c80c20558de833f4aa1c8f03b0348a35b85ca07556da1192faf9ad8ea049e5f9b

    • SSDEEP

      98304:ywIQH5/j2nzMZfcOU4y/7Z8fsV4fMRRiztuP3BHMOTF0:ywIsDZUTl/14sqs6MCOTF0

    Score
    7/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks