Overview

overview

8

Static

static

8

e0bd2e8219...1d.exe

windows7-x64

8

e0bd2e8219...1d.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e0bd2e82197201cb58a79089795c5c194f36509f83b4625241f8626b36a1e51d

  • Size

    149KB

  • Sample

    221004-f4q3sadhap

  • MD5

    15bcdf9b6ee3438af777b9f9ce06871e

  • SHA1

    209e0cbeb545d05cff4e5da7e296c85d4cbd5392

  • SHA256

    e0bd2e82197201cb58a79089795c5c194f36509f83b4625241f8626b36a1e51d

  • SHA512

    fff17167444ea288e58cf0d4aa68ecc37d4e81e2ba5d19b83d9127a04901259e5d082aed368db300b4c8ec4ce83bbdb3f509b1dd6a9c582c22ebc7b7ca916a7b

  • SSDEEP

    3072:78FSo5DOhBoNK7ak4F+ACFrVJjXe6zKB6JukoZ+L5O0IOCM:JuABoNuc+5JjXe160ko4L5OPtM

Score
8/10
spywarestealerupx

Malware Config

Targets

    • Target

      e0bd2e82197201cb58a79089795c5c194f36509f83b4625241f8626b36a1e51d

    • Size

      149KB

    • MD5

      15bcdf9b6ee3438af777b9f9ce06871e

    • SHA1

      209e0cbeb545d05cff4e5da7e296c85d4cbd5392

    • SHA256

      e0bd2e82197201cb58a79089795c5c194f36509f83b4625241f8626b36a1e51d

    • SHA512

      fff17167444ea288e58cf0d4aa68ecc37d4e81e2ba5d19b83d9127a04901259e5d082aed368db300b4c8ec4ce83bbdb3f509b1dd6a9c582c22ebc7b7ca916a7b

    • SSDEEP

      3072:78FSo5DOhBoNK7ak4F+ACFrVJjXe6zKB6JukoZ+L5O0IOCM:JuABoNuc+5JjXe160ko4L5OPtM

    Score
    8/10
    spywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks