Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
23-05-2024 03:20
Behavioral task
behavioral1
Sample
cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04.exe
Resource
win7-20240221-en
2 signatures
150 seconds
General
-
Target
cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04.exe
-
Size
7.2MB
-
MD5
becadfad0cfbd2e182ed9f282f3347bf
-
SHA1
0f9dcb8dae21726e9111c7f5508f00a8abd3aece
-
SHA256
cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04
-
SHA512
d72f2ed4397834704049d59d583dd3e6384a472c5c80d4e8c8fe5480327ab7068eebfffd45f5ec00da4c8ba74ead8937f9d54c2511a19ebbaceee7d250be9b73
-
SSDEEP
196608:9DaJcDKlFBqhRK85Xs5XvyCMYpr/nGLtwN:ZaODKlFBq7XsBvyCpLGLtw
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04.exepid process 2172 cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04.exe 2172 cfe583ed0a0354817a1cd273dd3f5463249e88d2117f64cc14b118b2f0a4eb04.exe