Overview

overview

8

Static

static

7785e6f7b8...05.exe

windows7-x64

8

7785e6f7b8...05.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605

  • Size

    813KB

  • Sample

    221123-q8wh6sba2v

  • MD5

    d8e64dea4131bf6820584218c699f424

  • SHA1

    4a15c1da8d8aa8c9641806215fd3283c8f8ee770

  • SHA256

    7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605

  • SHA512

    f27fd072418ba0a99f11769a350c77def2ea308d1929bd321f751098a00584ac4e54fcbee8f61c079f54466b2716bb81f09372b6d3543bd426c0b37515b7793a

  • SSDEEP

    24576:jFy/I8xNX1jpdC9j+IKbD4cH8dtPDnqeRKTyd:pQVh1ZIKb8ccdRn3d

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605

    • Size

      813KB

    • MD5

      d8e64dea4131bf6820584218c699f424

    • SHA1

      4a15c1da8d8aa8c9641806215fd3283c8f8ee770

    • SHA256

      7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605

    • SHA512

      f27fd072418ba0a99f11769a350c77def2ea308d1929bd321f751098a00584ac4e54fcbee8f61c079f54466b2716bb81f09372b6d3543bd426c0b37515b7793a

    • SSDEEP

      24576:jFy/I8xNX1jpdC9j+IKbD4cH8dtPDnqeRKTyd:pQVh1ZIKb8ccdRn3d

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks