Analysis
-
max time kernel
93s -
max time network
127s -
platform
windows10-2004_x64 -
resource
win10v2004-20240704-en -
resource tags
arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system -
submitted
05-07-2024 05:12
Behavioral task
behavioral1
Sample
771e2c35895a07c341d6525486c8eafbfb3eb2388b3c968885f028cc38b44f16.exe
Resource
win7-20240508-en
2 signatures
150 seconds
General
-
Target
771e2c35895a07c341d6525486c8eafbfb3eb2388b3c968885f028cc38b44f16.exe
-
Size
9.0MB
-
MD5
b7ceac3aff53e9cedbd4b0b3102d7768
-
SHA1
e357fead3088fc384bb67f34d8b52cc46f25b577
-
SHA256
771e2c35895a07c341d6525486c8eafbfb3eb2388b3c968885f028cc38b44f16
-
SHA512
6795945bd1a8787aebcd877ee642ed610cf25ec6edca04384eb4f18b159e5cac71187ca92374f592b328af7e3f8ca599a4dc026f269c514b6dbe2001ed8030d5
-
SSDEEP
196608:n8JcDKlFBqZcPzFwDxURK8vyqByLdlf3hRQIgLKN:8ODKlFBqauayOclfhRQIG2
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
771e2c35895a07c341d6525486c8eafbfb3eb2388b3c968885f028cc38b44f16.exepid process 1560 771e2c35895a07c341d6525486c8eafbfb3eb2388b3c968885f028cc38b44f16.exe 1560 771e2c35895a07c341d6525486c8eafbfb3eb2388b3c968885f028cc38b44f16.exe