Overview

overview

8

Static

static

9d42c56e4f...8d.exe

windows7-x64

8

9d42c56e4f...8d.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    9d42c56e4f405c641d054896557e5ea302e248b61181552df438278f974c9b8d

  • Size

    804KB

  • Sample

    221107-nkr5qsdef2

  • MD5

    04b7861d6f61d9d64cbf7dc38a41d5d0

  • SHA1

    1748e0d4c20a64461fe37ce9387df56745e869df

  • SHA256

    9d42c56e4f405c641d054896557e5ea302e248b61181552df438278f974c9b8d

  • SHA512

    922c6fb9f74114cefc46311837c72aadc361a40931bf034df89ecb1e672fc483a330390a8c9d92ec89b5786c3a0769056839543348193fdbfa10ea8b6af59fd8

  • SSDEEP

    24576:TqUxWnONPPwEgoKsz4PMrXLj70HiCSQea7H6mqz:9wEgoSP2bsiCSQ

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      9d42c56e4f405c641d054896557e5ea302e248b61181552df438278f974c9b8d

    • Size

      804KB

    • MD5

      04b7861d6f61d9d64cbf7dc38a41d5d0

    • SHA1

      1748e0d4c20a64461fe37ce9387df56745e869df

    • SHA256

      9d42c56e4f405c641d054896557e5ea302e248b61181552df438278f974c9b8d

    • SHA512

      922c6fb9f74114cefc46311837c72aadc361a40931bf034df89ecb1e672fc483a330390a8c9d92ec89b5786c3a0769056839543348193fdbfa10ea8b6af59fd8

    • SSDEEP

      24576:TqUxWnONPPwEgoKsz4PMrXLj70HiCSQea7H6mqz:9wEgoSP2bsiCSQ

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks