Overview

overview

8

Static

static

1

7a74a1544e...5d.exe

windows7-x64

8

7a74a1544e...5d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    7a74a1544e90e7580b3b68c7d3e8e0d421ef26bc575f527319ed75949290f35d

  • Size

    1.1MB

  • Sample

    221202-xjrbgsha2z

  • MD5

    ff371c37b8c52e822315806f8f1e5901

  • SHA1

    0ff9bd8bc20d1507c67fdcd87c193aac349cda85

  • SHA256

    7a74a1544e90e7580b3b68c7d3e8e0d421ef26bc575f527319ed75949290f35d

  • SHA512

    9ee032760f665b605c31a9f7480e72f725ece6398ac9c77b7fa69f54e9591cff6336d9062c50cce71ddeba28032fb95f915980c4faa9f21d502e112b3b3704ad

  • SSDEEP

    24576:q+oeaXowr7xy9UqPk8RhPKIxuq9bhGRLj2NA+/9gQ5niNx:7oGwr7xy9UqPk8RLAq9bKKNA+/wx

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      7a74a1544e90e7580b3b68c7d3e8e0d421ef26bc575f527319ed75949290f35d

    • Size

      1.1MB

    • MD5

      ff371c37b8c52e822315806f8f1e5901

    • SHA1

      0ff9bd8bc20d1507c67fdcd87c193aac349cda85

    • SHA256

      7a74a1544e90e7580b3b68c7d3e8e0d421ef26bc575f527319ed75949290f35d

    • SHA512

      9ee032760f665b605c31a9f7480e72f725ece6398ac9c77b7fa69f54e9591cff6336d9062c50cce71ddeba28032fb95f915980c4faa9f21d502e112b3b3704ad

    • SSDEEP

      24576:q+oeaXowr7xy9UqPk8RhPKIxuq9bhGRLj2NA+/9gQ5niNx:7oGwr7xy9UqPk8RLAq9bKKNA+/wx

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks