Overview

overview

8

Static

static

94db9abf4f...14.exe

windows7-x64

8

94db9abf4f...14.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    94db9abf4f0154c56520c25c93de532a7db7fc1ab0a0546c480a57d6b6387d14

  • Size

    816KB

  • Sample

    221030-ppq9nsbfem

  • MD5

    9283f3db4851821f22576867831bc5f0

  • SHA1

    cbd57b7b7b664d2fee8133f1a36daffb574e3a78

  • SHA256

    94db9abf4f0154c56520c25c93de532a7db7fc1ab0a0546c480a57d6b6387d14

  • SHA512

    ad0d1d29738cb8f4539ac7dfffc1ba47cb0cfaecdc2d9cd1d86e7ee9df9f5ca8e3f09e2c7f97014d5d30db3d3146f150d3ad2e52597c6593f6069cd8fb49b284

  • SSDEEP

    24576:lwYl39we/anIf8moW7CXahwOLuPnlEnrS:xl399/LfkjXewOqmS

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      94db9abf4f0154c56520c25c93de532a7db7fc1ab0a0546c480a57d6b6387d14

    • Size

      816KB

    • MD5

      9283f3db4851821f22576867831bc5f0

    • SHA1

      cbd57b7b7b664d2fee8133f1a36daffb574e3a78

    • SHA256

      94db9abf4f0154c56520c25c93de532a7db7fc1ab0a0546c480a57d6b6387d14

    • SHA512

      ad0d1d29738cb8f4539ac7dfffc1ba47cb0cfaecdc2d9cd1d86e7ee9df9f5ca8e3f09e2c7f97014d5d30db3d3146f150d3ad2e52597c6593f6069cd8fb49b284

    • SSDEEP

      24576:lwYl39we/anIf8moW7CXahwOLuPnlEnrS:xl399/LfkjXewOqmS

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks