Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
-
submitted
23-05-2024 20:09
General
-
Target
c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845.exe
-
Size
9.0MB
-
MD5
0dd15c703899e15cd0bcf6aa928ef659
-
SHA1
be9d915944876cb9ae765b5dc003243605c09e41
-
SHA256
c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845
-
SHA512
69c47a90e77988b348acbcc1fb7a5248c53f5cbf5601c58af80d06602b9c24c4837e2ea4c40a65fd438f858fb6899e421b49926c5b56a83022fa6d0aef74def2
-
SSDEEP
196608:nZJcDKlFBqZcPzFwDxURK8vyqByLdlf3hRQIgLKN:ZODKlFBqauayOclfhRQIG2
Score
7/10
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845.exe"C:\Users\Admin\AppData\Local\Temp\c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845.exe"1⤵
- Suspicious use of SetWindowsHookEx