Overview

overview

8

Static

static

32010c1fff...74.exe

windows7-x64

8

32010c1fff...74.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    32010c1fff1a07ec4c398d0d307100b98dabe7ee07b06eca4f5b7a41bbeb2174

  • Size

    868KB

  • Sample

    221020-kzzxcaegb8

  • MD5

    7baa94cbbb8fc220c03e33f959e03260

  • SHA1

    65ef00aa3b8ac30bead6c9830eaf4a06e2e5b9cb

  • SHA256

    32010c1fff1a07ec4c398d0d307100b98dabe7ee07b06eca4f5b7a41bbeb2174

  • SHA512

    b18a2fa395234902426cca60b7c95ec8176307c527d9e8e23c48aa0d09d269af4ff766a4d83c08ef133de9fda6abe9a0f340b17883f192483f58dbb2e0826661

  • SSDEEP

    24576:lrxJB0/I+CMii6I32OVWP1zjaNilwqcyC4AgCg6+:VxJSwDMii6KQ1XaEUq6

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      32010c1fff1a07ec4c398d0d307100b98dabe7ee07b06eca4f5b7a41bbeb2174

    • Size

      868KB

    • MD5

      7baa94cbbb8fc220c03e33f959e03260

    • SHA1

      65ef00aa3b8ac30bead6c9830eaf4a06e2e5b9cb

    • SHA256

      32010c1fff1a07ec4c398d0d307100b98dabe7ee07b06eca4f5b7a41bbeb2174

    • SHA512

      b18a2fa395234902426cca60b7c95ec8176307c527d9e8e23c48aa0d09d269af4ff766a4d83c08ef133de9fda6abe9a0f340b17883f192483f58dbb2e0826661

    • SSDEEP

      24576:lrxJB0/I+CMii6I32OVWP1zjaNilwqcyC4AgCg6+:VxJSwDMii6KQ1XaEUq6

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks