Overview

overview

7

Static

static

3

winprofile

windows7-x64

3

winprofile

windows10-1703-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    466a3bd558ee7bfaeb0e57c0ba3d824d21fa0f98ead8876fc46a68fa8d0ad987

  • Size

    624KB

  • Sample

    240711-2grxfszbnh

  • MD5

    427bc48b113ab6f76876b638142714cf

  • SHA1

    7a3d40f25712ce26adfe5962ad123b51ba0baa6f

  • SHA256

    466a3bd558ee7bfaeb0e57c0ba3d824d21fa0f98ead8876fc46a68fa8d0ad987

  • SHA512

    8f3b473804afda32b1722424cc0dc1d114720f9e87d148776539a3c849bc420290e2846f61a56cf0b548cd5126b8bd73764fd85812f1b42b8d7053658da1ba59

  • SSDEEP

    12288:QE9UN00o9TWB2wMqw29CK5OMK960x6DhvwzMZ/KbYoVIg4B:Q+UN0LJfwLEd6cOh4IYYoVIg4

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      466a3bd558ee7bfaeb0e57c0ba3d824d21fa0f98ead8876fc46a68fa8d0ad987

    • Size

      624KB

    • MD5

      427bc48b113ab6f76876b638142714cf

    • SHA1

      7a3d40f25712ce26adfe5962ad123b51ba0baa6f

    • SHA256

      466a3bd558ee7bfaeb0e57c0ba3d824d21fa0f98ead8876fc46a68fa8d0ad987

    • SHA512

      8f3b473804afda32b1722424cc0dc1d114720f9e87d148776539a3c849bc420290e2846f61a56cf0b548cd5126b8bd73764fd85812f1b42b8d7053658da1ba59

    • SSDEEP

      12288:QE9UN00o9TWB2wMqw29CK5OMK960x6DhvwzMZ/KbYoVIg4B:Q+UN0LJfwLEd6cOh4IYYoVIg4

    Score
    7/10
    discoveryspywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks