Overview

overview

8

Static

static

abde6bdb93...9a.exe

windows7-x64

8

abde6bdb93...9a.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    abde6bdb932dbea438a175a53e61d69a64a29fceb08ec0134faaa723183fa49a

  • Size

    866KB

  • Sample

    221201-yektksea49

  • MD5

    66e282fdf2179975da104c3f6f3abc4a

  • SHA1

    83e9d98ad82a5c00fba7783905c2cdf9f9a61535

  • SHA256

    abde6bdb932dbea438a175a53e61d69a64a29fceb08ec0134faaa723183fa49a

  • SHA512

    6f2be21d5a03f170538cefa4c426d89fe4c934f326980bba0f53aca9e9c5dfd6983cdb4ed694fe5a65811de8e2f98d9cae026ea7bcfa17afae702423f45a10ac

  • SSDEEP

    24576:ZisxtfbBXl8LRB7yChzgQQFzGWpROslGZP:ZTHfbtWRBe8uTpIslG

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      abde6bdb932dbea438a175a53e61d69a64a29fceb08ec0134faaa723183fa49a

    • Size

      866KB

    • MD5

      66e282fdf2179975da104c3f6f3abc4a

    • SHA1

      83e9d98ad82a5c00fba7783905c2cdf9f9a61535

    • SHA256

      abde6bdb932dbea438a175a53e61d69a64a29fceb08ec0134faaa723183fa49a

    • SHA512

      6f2be21d5a03f170538cefa4c426d89fe4c934f326980bba0f53aca9e9c5dfd6983cdb4ed694fe5a65811de8e2f98d9cae026ea7bcfa17afae702423f45a10ac

    • SSDEEP

      24576:ZisxtfbBXl8LRB7yChzgQQFzGWpROslGZP:ZTHfbtWRBe8uTpIslG

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks