Overview

overview

8

Static

static

e126825eff...63.exe

windows7-x64

8

e126825eff...63.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163

  • Size

    817KB

  • Sample

    221107-lyzevsafc2

  • MD5

    081cf88e8d8525cceacf2a53c4bc73d0

  • SHA1

    b692f9a9091462bfd5460161bb1e49cecdfcaa53

  • SHA256

    e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163

  • SHA512

    70bac6cce2797de5c131f9d0c93c88558bb05adfc97106fc95d34d693b879febd891c1de126d09555470fc15333ffe85602082c3d56453e007736f32a85412a2

  • SSDEEP

    24576:LtlybcWOIivsnJ3vUo9p+TOE92m2lHZedM0S/:plcJ1JfUApAOE9PdR

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163

    • Size

      817KB

    • MD5

      081cf88e8d8525cceacf2a53c4bc73d0

    • SHA1

      b692f9a9091462bfd5460161bb1e49cecdfcaa53

    • SHA256

      e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163

    • SHA512

      70bac6cce2797de5c131f9d0c93c88558bb05adfc97106fc95d34d693b879febd891c1de126d09555470fc15333ffe85602082c3d56453e007736f32a85412a2

    • SSDEEP

      24576:LtlybcWOIivsnJ3vUo9p+TOE92m2lHZedM0S/:plcJ1JfUApAOE9PdR

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks