Overview

overview

8

Static

static

8

3b237149eb...16.exe

windows7-x64

8

3b237149eb...16.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    3b237149eba156c6537d086fea93856da20d8c24eecd7f3e95549748e395c316

  • Size

    48KB

  • Sample

    221030-wnww4ache5

  • MD5

    82159aab287723a53b934e761237c5b0

  • SHA1

    3e1bdeaf810b314988357f32564f5a603ff39a16

  • SHA256

    3b237149eba156c6537d086fea93856da20d8c24eecd7f3e95549748e395c316

  • SHA512

    c28ed9c7a4c356d46bfb689e79bb835634dfbc4e40b2f8b470c6d01dd539dd0efff4e2242b38c8c493f1ce1e0dcadb7c847618cc438ac68668fc33fd6964976e

  • SSDEEP

    768:5D8exNfmxXtAtXjZqOoiEmPun1t0/Zmp9Uo1bIONrwP7MzhWMk/rIk8XvNkpdKut:DUtAhZ4iK1t0cvUo2P7gs48Fzicv

Score
8/10
spywarestealerupx

Malware Config

Targets

    • Target

      3b237149eba156c6537d086fea93856da20d8c24eecd7f3e95549748e395c316

    • Size

      48KB

    • MD5

      82159aab287723a53b934e761237c5b0

    • SHA1

      3e1bdeaf810b314988357f32564f5a603ff39a16

    • SHA256

      3b237149eba156c6537d086fea93856da20d8c24eecd7f3e95549748e395c316

    • SHA512

      c28ed9c7a4c356d46bfb689e79bb835634dfbc4e40b2f8b470c6d01dd539dd0efff4e2242b38c8c493f1ce1e0dcadb7c847618cc438ac68668fc33fd6964976e

    • SSDEEP

      768:5D8exNfmxXtAtXjZqOoiEmPun1t0/Zmp9Uo1bIONrwP7MzhWMk/rIk8XvNkpdKut:DUtAhZ4iK1t0cvUo2P7gs48Fzicv

    Score
    8/10
    spywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops startup file

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks