Analysis
-
max time kernel
147s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
26-06-2024 00:23
Behavioral task
behavioral1
Sample
26c17c93d4c4b4d98874724f2d19621f57e7bfb4eec94195adaf0825672b8154.exe
Resource
win7-20240221-en
windows7-x64
2 signatures
150 seconds
General
-
Target
26c17c93d4c4b4d98874724f2d19621f57e7bfb4eec94195adaf0825672b8154.exe
-
Size
9.0MB
-
MD5
7e1b37d9b6f6708829d4a84cd166f2e9
-
SHA1
8b23e12ff9a6f47aafd3a546b40243fc35a79361
-
SHA256
26c17c93d4c4b4d98874724f2d19621f57e7bfb4eec94195adaf0825672b8154
-
SHA512
1d4472ccba4a06881d1ee09c1aa4408ca0986916fb2193a8a8f18dd7f5b9c3190fa5e86af94e27a5e6812e84a4c65de55e4c69a22b7ac095d8c2adaeed21c2f3
-
SSDEEP
196608:nJJcDKlFBqZcPzFwDxURK8vyqByLdlf3hRQIgLKN:JODKlFBqauayOclfhRQIG2
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 2324 26c17c93d4c4b4d98874724f2d19621f57e7bfb4eec94195adaf0825672b8154.exe 2324 26c17c93d4c4b4d98874724f2d19621f57e7bfb4eec94195adaf0825672b8154.exe