Overview

overview

7

Static

static

3

97417b700f...9N.exe

windows7-x64

7

97417b700f...9N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    97417b700f299f3563e2e377803b1ea1ee09076579567d88339bb3b45e1c3a39N

  • Size

    1.1MB

  • Sample

    241109-bfnkjatfnk

  • MD5

    76481d74b9c086bd092e4ac63e2ba7d0

  • SHA1

    52deb6e4ac7495f2ff7ba7d40486af3d5207bc65

  • SHA256

    97417b700f299f3563e2e377803b1ea1ee09076579567d88339bb3b45e1c3a39

  • SHA512

    acc389c8ca07f6c5dbc2102eb555720d86fb351f7b8a2d7198ac3574004d27f81621f1c9c6531b14cb1751e0775cca5ff08feffe27d7f05c9dddfbabcd2f2d52

  • SSDEEP

    24576:nxllVmuE1SyYITeiih9R+1Nuib12jPCZMsF3cP6vgaF5ILsTtvg:nxJ+1xeBh9piEeLgItI

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      97417b700f299f3563e2e377803b1ea1ee09076579567d88339bb3b45e1c3a39N

    • Size

      1.1MB

    • MD5

      76481d74b9c086bd092e4ac63e2ba7d0

    • SHA1

      52deb6e4ac7495f2ff7ba7d40486af3d5207bc65

    • SHA256

      97417b700f299f3563e2e377803b1ea1ee09076579567d88339bb3b45e1c3a39

    • SHA512

      acc389c8ca07f6c5dbc2102eb555720d86fb351f7b8a2d7198ac3574004d27f81621f1c9c6531b14cb1751e0775cca5ff08feffe27d7f05c9dddfbabcd2f2d52

    • SSDEEP

      24576:nxllVmuE1SyYITeiih9R+1Nuib12jPCZMsF3cP6vgaF5ILsTtvg:nxJ+1xeBh9piEeLgItI

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks