Overview

overview

8

Static

static

9306afcee1...e6.exe

windows7-x64

8

9306afcee1...e6.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    9306afcee1aff2cf3316ed9eff6a2df6014ed0b18da748ae6582c773fc3f16e6

  • Size

    800KB

  • Sample

    221129-fyq6lahc24

  • MD5

    219b52b444403d89ca3095a12dd0323f

  • SHA1

    1b5244791930c0c5067682c9cc0788b9673eb96d

  • SHA256

    9306afcee1aff2cf3316ed9eff6a2df6014ed0b18da748ae6582c773fc3f16e6

  • SHA512

    3461aafa090be28aef3d1a0c6c4e68b9d1e9589943b6b88508ce66ae0c1ffb889a8a05a6c35019331ae7c586cce8a7d9ab9d1ceb873221c03493e478ee80d844

  • SSDEEP

    24576:a2m2x07lFq+IOsaK20yeUAt91pdu3T/d3Dypy2:XFx0R4+IOsaK20/tW3T/dmpy2

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      9306afcee1aff2cf3316ed9eff6a2df6014ed0b18da748ae6582c773fc3f16e6

    • Size

      800KB

    • MD5

      219b52b444403d89ca3095a12dd0323f

    • SHA1

      1b5244791930c0c5067682c9cc0788b9673eb96d

    • SHA256

      9306afcee1aff2cf3316ed9eff6a2df6014ed0b18da748ae6582c773fc3f16e6

    • SHA512

      3461aafa090be28aef3d1a0c6c4e68b9d1e9589943b6b88508ce66ae0c1ffb889a8a05a6c35019331ae7c586cce8a7d9ab9d1ceb873221c03493e478ee80d844

    • SSDEEP

      24576:a2m2x07lFq+IOsaK20yeUAt91pdu3T/d3Dypy2:XFx0R4+IOsaK20/tW3T/dmpy2

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks