Analysis
-
max time kernel
118s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
24-05-2024 11:59
Behavioral task
behavioral1
Sample
dc6c35226bca91f7e9e0c0ae81456812b4ed5262dcc14e5c7168ed335876c8fe.exe
Resource
win7-20240221-en
windows7-x64
2 signatures
150 seconds
General
-
Target
dc6c35226bca91f7e9e0c0ae81456812b4ed5262dcc14e5c7168ed335876c8fe.exe
-
Size
9.0MB
-
MD5
f731aa171797d3a103ecc187106c857c
-
SHA1
8e1f601490d102a6683734b29ec0276bc44c3f35
-
SHA256
dc6c35226bca91f7e9e0c0ae81456812b4ed5262dcc14e5c7168ed335876c8fe
-
SHA512
2c12a6402b6bb539554b5ca83ec4cf26a3b1a39bec7bd92905e0e464e0d52aada27ff3c7f1c3a4078f040d0e80b2348a81ed331983b366a26fecc42638f188dc
-
SSDEEP
196608:n0JcDKlFBqZcPzFwDxURK8vyqByLdlf3hRQIgLKN:0ODKlFBqauayOclfhRQIG2
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
dc6c35226bca91f7e9e0c0ae81456812b4ed5262dcc14e5c7168ed335876c8fe.exepid process 2020 dc6c35226bca91f7e9e0c0ae81456812b4ed5262dcc14e5c7168ed335876c8fe.exe 2020 dc6c35226bca91f7e9e0c0ae81456812b4ed5262dcc14e5c7168ed335876c8fe.exe