5d8eb20aa8dd1ee8a6df8d2165572400844224c08a2e593a41d022224045f7b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d8eb20aa8dd1ee8a6df8d2165572400844224c08a2e593a41d022224045f7b3
Size

2.8MB
Sample

221028-e3h54sehcr
MD5

0306984b4b3f471d6d57a753f8489a1e
SHA1

9897df2b3b8cd2fea81d06c2b2c00fad75899dda
SHA256

5d8eb20aa8dd1ee8a6df8d2165572400844224c08a2e593a41d022224045f7b3
SHA512

64c8c3003626d18ce533c15bf20b8861856c1481cb616b165ebff4bd08246799cf35c855b7e8014b1c960ba1a3b9be849e70e0460641608bd57ae7acd3d5327e
SSDEEP

49152:hNL9FmG3ZPgsDI9TPf3TkL54nouNVMkDSe07KV5m50cahMXpVXq5T3TQqI1JP:hNLjfPfDI5PfY5TgVMo07/50cMIVIT30

Score

8^/10

spyware stealer upx

Malware Config

Targets

- Target
  
  5d8eb20aa8dd1ee8a6df8d2165572400844224c08a2e593a41d022224045f7b3
- Size
  
  2.8MB
- MD5
  
  0306984b4b3f471d6d57a753f8489a1e
- SHA1
  
  9897df2b3b8cd2fea81d06c2b2c00fad75899dda
- SHA256
  
  5d8eb20aa8dd1ee8a6df8d2165572400844224c08a2e593a41d022224045f7b3
- SHA512
  
  64c8c3003626d18ce533c15bf20b8861856c1481cb616b165ebff4bd08246799cf35c855b7e8014b1c960ba1a3b9be849e70e0460641608bd57ae7acd3d5327e
- SSDEEP
  
  49152:hNL9FmG3ZPgsDI9TPf3TkL54nouNVMkDSe07KV5m50cahMXpVXq5T3TQqI1JP:hNLjfPfDI5PfY5TgVMo07/50cMIVIT30
Score

8^/10

spyware stealer upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

spywarestealerupx

behavioral2

spywarestealerupx