Analysis
-
max time kernel
134s -
max time network
103s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
23-05-2024 04:24
Behavioral task
behavioral1
Sample
ccbf61e790144266f86889678fbbb2f715248dc26d46ec7f0d35c956c65cf085.exe
Resource
win7-20240221-en
windows7-x64
2 signatures
150 seconds
General
-
Target
ccbf61e790144266f86889678fbbb2f715248dc26d46ec7f0d35c956c65cf085.exe
-
Size
9.0MB
-
MD5
055ef5ead66e086565943b4fe2398635
-
SHA1
01150aed9af81fe8f9fa122598478a614f9cd77c
-
SHA256
ccbf61e790144266f86889678fbbb2f715248dc26d46ec7f0d35c956c65cf085
-
SHA512
5f1aee55ce53f4cd8f196930f6e0165ceb5e19046aa0ddd5598eaf10990e9c6648d11e2edaf2d4faa59ad9e18fd2723643a32a8e09d57eb10aa0c7187107cc54
-
SSDEEP
196608:n6JcDKlFBqkwDxURK8vyqByLdlf3hRQIgLKN:6ODKlFBqHayOclfhRQIG2
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
ccbf61e790144266f86889678fbbb2f715248dc26d46ec7f0d35c956c65cf085.exepid process 5056 ccbf61e790144266f86889678fbbb2f715248dc26d46ec7f0d35c956c65cf085.exe 5056 ccbf61e790144266f86889678fbbb2f715248dc26d46ec7f0d35c956c65cf085.exe