Overview

overview

10

Static

static

8

7ef84baa18...6f.exe

windows7-x64

10

7ef84baa18...6f.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    7ef84baa182be7c3c99cdd4ae8d8b5761dc66e9798382ff15cd95cfa5b8a306f

  • Size

    224KB

  • Sample

    221124-g274ysgh9y

  • MD5

    98c6fa382831c662a9cd5abadd0f3a88

  • SHA1

    f2d3ffb287a9c9f11d795c0d254d7a2d4be5f40c

  • SHA256

    7ef84baa182be7c3c99cdd4ae8d8b5761dc66e9798382ff15cd95cfa5b8a306f

  • SHA512

    df2a8c833ee5c3430d0f44c41d5879b098f882495658929b13494182f140f99b8bb55d4f4e3a5f6dcd969f70f20ca1328e45206422f6b451d0ec9f041b216cac

  • SSDEEP

    3072:PgWRPYScXCi+bLyYXv7sIn3v5cBa0WXMVukHTnC1D7wezR6mxunLnO7F7kadOIf:oWmScytbLxXv7taBUUzgD7VR62V71

Score
10/10
evasionspywarestealertrojanupx

Malware Config

Targets

    • Target

      7ef84baa182be7c3c99cdd4ae8d8b5761dc66e9798382ff15cd95cfa5b8a306f

    • Size

      224KB

    • MD5

      98c6fa382831c662a9cd5abadd0f3a88

    • SHA1

      f2d3ffb287a9c9f11d795c0d254d7a2d4be5f40c

    • SHA256

      7ef84baa182be7c3c99cdd4ae8d8b5761dc66e9798382ff15cd95cfa5b8a306f

    • SHA512

      df2a8c833ee5c3430d0f44c41d5879b098f882495658929b13494182f140f99b8bb55d4f4e3a5f6dcd969f70f20ca1328e45206422f6b451d0ec9f041b216cac

    • SSDEEP

      3072:PgWRPYScXCi+bLyYXv7sIn3v5cBa0WXMVukHTnC1D7wezR6mxunLnO7F7kadOIf:oWmScytbLxXv7taBUUzgD7VR62V71

    Score
    10/10
    evasionspywarestealertrojanupx

    • UAC bypass

      evasiontrojan

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks