Overview

overview

8

Static

static

04c85e7fa5...b2.exe

windows7-x64

8

04c85e7fa5...b2.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    04c85e7fa589bb8750426b1026d7142554d737263a5e178e30f305bd13c5c8b2

  • Size

    822KB

  • Sample

    221002-ly4dtabfgj

  • MD5

    6f72af5f74cfd3ba9a0f345ddcb13bf0

  • SHA1

    0dbc9757f231c54d8cb180ee2d013970ba5c3b99

  • SHA256

    04c85e7fa589bb8750426b1026d7142554d737263a5e178e30f305bd13c5c8b2

  • SHA512

    1e1aa0e1b291398cb63d6194810714b9510f8ac43666d650af04a61366a5b1c27c0dc019404db3391a84156d7861475a9e44266753f56f0a29551e989118ba76

  • SSDEEP

    24576:khrRhkSxOwHQAfjTeUCyA6mBEZEzG7pV9R:khrRhkVAfjTLA6MEq

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      04c85e7fa589bb8750426b1026d7142554d737263a5e178e30f305bd13c5c8b2

    • Size

      822KB

    • MD5

      6f72af5f74cfd3ba9a0f345ddcb13bf0

    • SHA1

      0dbc9757f231c54d8cb180ee2d013970ba5c3b99

    • SHA256

      04c85e7fa589bb8750426b1026d7142554d737263a5e178e30f305bd13c5c8b2

    • SHA512

      1e1aa0e1b291398cb63d6194810714b9510f8ac43666d650af04a61366a5b1c27c0dc019404db3391a84156d7861475a9e44266753f56f0a29551e989118ba76

    • SSDEEP

      24576:khrRhkSxOwHQAfjTeUCyA6mBEZEzG7pV9R:khrRhkVAfjTLA6MEq

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks