Analysis
-
max time kernel
148s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
27-12-2024 02:51
General
-
Target
de8812a7df877cec32ffc9e8467d523af409499ad421b388994b3c5fed768905.exe
-
Size
20KB
-
MD5
9c1a27f56d54f300447cba07e1cd9ca0
-
SHA1
aeb004114db8a5de198ad82a58ab692bf380ec10
-
SHA256
de8812a7df877cec32ffc9e8467d523af409499ad421b388994b3c5fed768905
-
SHA512
04590b909d0193c141849752d76259cb8fc01ea655971236292667890c2e575df2149123d4b5c695050fda414ebcbefb795dd608e5d7337422959dcca3e91425
-
SSDEEP
384:z10WLc01P9+IKzPiVUA7q/ibYTJ4JVB00NtMSKRJh:L5P9rKOVUm/YAvNt4
Score
7/10
Malware Config
Signatures
-
Reads user/profile data of web browsers 3 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes
-
C:\Users\Admin\AppData\Local\Temp\de8812a7df877cec32ffc9e8467d523af409499ad421b388994b3c5fed768905.exe"C:\Users\Admin\AppData\Local\Temp\de8812a7df877cec32ffc9e8467d523af409499ad421b388994b3c5fed768905.exe"1⤵
- System Location Discovery: System Language Discovery