Overview

overview

8

Static

static

8fe7f2c4f8...a5.exe

windows7-x64

8

8fe7f2c4f8...a5.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    8fe7f2c4f8ef536a61c5b9997be7faf48b15b8236d4f47a8c3450a5b886c8fa5

  • Size

    815KB

  • Sample

    221201-z4qa2afb2x

  • MD5

    650bb8a20b7845fb5fa608451a7823b8

  • SHA1

    b3bb11d7e2cecba9c9dde8b509d13014bedb0333

  • SHA256

    8fe7f2c4f8ef536a61c5b9997be7faf48b15b8236d4f47a8c3450a5b886c8fa5

  • SHA512

    813aa68286fc17f8ed349bbec5cc834278a339307b533bf94debcac2e05658d1aa556d11c050d75bc5695b1fdee45b43d7fb189febe56b53041df639950d86d9

  • SSDEEP

    24576:U71+l3FNO2XE6YVVceBJ4FvGX3fdF14eVx9d4x6F25TvoHN:r7O16Y3cW6FvalX9d4x6Fc0HN

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      8fe7f2c4f8ef536a61c5b9997be7faf48b15b8236d4f47a8c3450a5b886c8fa5

    • Size

      815KB

    • MD5

      650bb8a20b7845fb5fa608451a7823b8

    • SHA1

      b3bb11d7e2cecba9c9dde8b509d13014bedb0333

    • SHA256

      8fe7f2c4f8ef536a61c5b9997be7faf48b15b8236d4f47a8c3450a5b886c8fa5

    • SHA512

      813aa68286fc17f8ed349bbec5cc834278a339307b533bf94debcac2e05658d1aa556d11c050d75bc5695b1fdee45b43d7fb189febe56b53041df639950d86d9

    • SSDEEP

      24576:U71+l3FNO2XE6YVVceBJ4FvGX3fdF14eVx9d4x6F25TvoHN:r7O16Y3cW6FvalX9d4x6Fc0HN

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks