Overview

overview

8

Static

static

334dac117d...af.exe

windows7-x64

8

334dac117d...af.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    334dac117d63600a7c06672ae3df5e633b563c0bab8a29e5be00cba0675c68af

  • Size

    816KB

  • Sample

    221123-rzsatsch4z

  • MD5

    ff41e1bb2dd0bee6d7ea7dde35075b4b

  • SHA1

    cf499f757209748e252f9aefa1367b8d426e18f7

  • SHA256

    334dac117d63600a7c06672ae3df5e633b563c0bab8a29e5be00cba0675c68af

  • SHA512

    e466abd682b98d87cf212c66c2481df697889773eb7ee255b7ed46724b2d27f18b614ec6944a11d4220b5c9a4bc017e8c24c894fa90b597eec4cf10e3cb9bd21

  • SSDEEP

    12288:sNf/c3xu339g2ugp/tcZE6UHYQELpNFtvNFJspUT+/AvbLG+bxYf0D7GsaXc8RJ:s1iudg2uJZ9RHNFsUu+bxY47DaM8RJ

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      334dac117d63600a7c06672ae3df5e633b563c0bab8a29e5be00cba0675c68af

    • Size

      816KB

    • MD5

      ff41e1bb2dd0bee6d7ea7dde35075b4b

    • SHA1

      cf499f757209748e252f9aefa1367b8d426e18f7

    • SHA256

      334dac117d63600a7c06672ae3df5e633b563c0bab8a29e5be00cba0675c68af

    • SHA512

      e466abd682b98d87cf212c66c2481df697889773eb7ee255b7ed46724b2d27f18b614ec6944a11d4220b5c9a4bc017e8c24c894fa90b597eec4cf10e3cb9bd21

    • SSDEEP

      12288:sNf/c3xu339g2ugp/tcZE6UHYQELpNFtvNFJspUT+/AvbLG+bxYf0D7GsaXc8RJ:s1iudg2uJZ9RHNFsUu+bxY47DaM8RJ

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks