Overview

overview

8

Static

static

8

a748b1d387...2d.exe

windows7-x64

8

a748b1d387...2d.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a748b1d387be19235fdc6d8e441422d37a3c4a9aeba377408b69615e7721652d

  • Size

    175KB

  • Sample

    221123-ve34dagh35

  • MD5

    4471d91618fa673799941a9cacb077c0

  • SHA1

    68715cc6ddb5370a261c1c645386c32e2bef6c65

  • SHA256

    a748b1d387be19235fdc6d8e441422d37a3c4a9aeba377408b69615e7721652d

  • SHA512

    bfbbab23d2cda687b4ca34fed087a7963125530847c56931708c6e1d86b5e622674be8a0bf0ef756530640be65dbdcf77e40281a0b852d416fa9e6d33981d27c

  • SSDEEP

    3072:6NQKPWDyNI0fFJltZrpReFX3zPa1pytoL7cqbw3o36nN5NcKNjTJhR3oloC:6NSDyNIkFthpyPSwoLdio36nvNc0REoC

Score
8/10
spywarestealerupx

Malware Config

Targets

    • Target

      a748b1d387be19235fdc6d8e441422d37a3c4a9aeba377408b69615e7721652d

    • Size

      175KB

    • MD5

      4471d91618fa673799941a9cacb077c0

    • SHA1

      68715cc6ddb5370a261c1c645386c32e2bef6c65

    • SHA256

      a748b1d387be19235fdc6d8e441422d37a3c4a9aeba377408b69615e7721652d

    • SHA512

      bfbbab23d2cda687b4ca34fed087a7963125530847c56931708c6e1d86b5e622674be8a0bf0ef756530640be65dbdcf77e40281a0b852d416fa9e6d33981d27c

    • SSDEEP

      3072:6NQKPWDyNI0fFJltZrpReFX3zPa1pytoL7cqbw3o36nN5NcKNjTJhR3oloC:6NSDyNIkFthpyPSwoLdio36nvNc0REoC

    Score
    8/10
    spywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks