Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
23-05-2024 20:09
Behavioral task
behavioral1
Sample
c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845.exe
Resource
win7-20240508-en
windows7-x64
2 signatures
150 seconds
General
-
Target
c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845.exe
-
Size
9.0MB
-
MD5
0dd15c703899e15cd0bcf6aa928ef659
-
SHA1
be9d915944876cb9ae765b5dc003243605c09e41
-
SHA256
c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845
-
SHA512
69c47a90e77988b348acbcc1fb7a5248c53f5cbf5601c58af80d06602b9c24c4837e2ea4c40a65fd438f858fb6899e421b49926c5b56a83022fa6d0aef74def2
-
SSDEEP
196608:nZJcDKlFBqZcPzFwDxURK8vyqByLdlf3hRQIgLKN:ZODKlFBqauayOclfhRQIG2
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845.exepid process 1484 c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845.exe 1484 c231c67920af1df017a12a5f2c5b418f75f817869a4bd76de3e5cb8eef475845.exe