Overview

overview

8

Static

static

566b247241...92.exe

windows7-x64

8

566b247241...92.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    566b2472415643fdeb2dc65745a1a9368ed1aba3c7a4d72676caff1880f01b92

  • Size

    793KB

  • Sample

    221201-fq67vabd8w

  • MD5

    92ce6ba1b85538c919f7561ad8a2be24

  • SHA1

    6d48e0a9ec1c65b5f0252a9b0d7a48690477a25b

  • SHA256

    566b2472415643fdeb2dc65745a1a9368ed1aba3c7a4d72676caff1880f01b92

  • SHA512

    6adac8b404ea0fc797210ab3362a9ca9000516e53b6418934a4e32d6ff43a949974243b3a957ac3b44500b5430c2fe4eb38ec40f7115ddc50924d82e544d0e53

  • SSDEEP

    12288:fQQfIAh6JgDabrvRjvWxz529cN2k2/DCmRxGLWG:fFfxDQRgzc9cNgOmrG6

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      566b2472415643fdeb2dc65745a1a9368ed1aba3c7a4d72676caff1880f01b92

    • Size

      793KB

    • MD5

      92ce6ba1b85538c919f7561ad8a2be24

    • SHA1

      6d48e0a9ec1c65b5f0252a9b0d7a48690477a25b

    • SHA256

      566b2472415643fdeb2dc65745a1a9368ed1aba3c7a4d72676caff1880f01b92

    • SHA512

      6adac8b404ea0fc797210ab3362a9ca9000516e53b6418934a4e32d6ff43a949974243b3a957ac3b44500b5430c2fe4eb38ec40f7115ddc50924d82e544d0e53

    • SSDEEP

      12288:fQQfIAh6JgDabrvRjvWxz529cN2k2/DCmRxGLWG:fFfxDQRgzc9cNgOmrG6

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks