Overview

overview

8

Static

static

90cba81cd0...10.exe

windows7-x64

8

90cba81cd0...10.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    90cba81cd0870405b92f596d3dd024d3651d18a9d93365eb70bfb5c13bf00610

  • Size

    815KB

  • Sample

    221124-j19x9saf34

  • MD5

    cd8dbaf9e92043cf5384f1994c0925e8

  • SHA1

    6de6b3bbe528c15451bd3005efa6ecc172079b13

  • SHA256

    90cba81cd0870405b92f596d3dd024d3651d18a9d93365eb70bfb5c13bf00610

  • SHA512

    feca041f4b33492a5b135e167a14b843b693afcc915f28d5a4e9dcee0b19349e88feeb42bbdc9a5fe400ddd6b5542a3d2fbfd2e5b0dcd39a6eadd7b363f25bfc

  • SSDEEP

    12288:pjsaFq2V4qT4pbqckPnRKhnPG9caFVGb7abZdYFkFWxMjcaiiBA/qQ:pl4JrkPnRcPecaz67absxxMBs

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      90cba81cd0870405b92f596d3dd024d3651d18a9d93365eb70bfb5c13bf00610

    • Size

      815KB

    • MD5

      cd8dbaf9e92043cf5384f1994c0925e8

    • SHA1

      6de6b3bbe528c15451bd3005efa6ecc172079b13

    • SHA256

      90cba81cd0870405b92f596d3dd024d3651d18a9d93365eb70bfb5c13bf00610

    • SHA512

      feca041f4b33492a5b135e167a14b843b693afcc915f28d5a4e9dcee0b19349e88feeb42bbdc9a5fe400ddd6b5542a3d2fbfd2e5b0dcd39a6eadd7b363f25bfc

    • SSDEEP

      12288:pjsaFq2V4qT4pbqckPnRKhnPG9caFVGb7abZdYFkFWxMjcaiiBA/qQ:pl4JrkPnRcPecaz67absxxMBs

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks