Overview

overview

8

Static

static

afc5476e00...b1.exe

windows7-x64

8

afc5476e00...b1.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    afc5476e0005cea5e19cb4226963566529c61b9e0e66ad3b8cf6d2ac816a50b1

  • Size

    812KB

  • Sample

    221204-jh493adc8y

  • MD5

    18e7ccdf0ca99c79cc5aff79c4c43ab6

  • SHA1

    e018aa42c35fdb811af839823656afb9821d00af

  • SHA256

    afc5476e0005cea5e19cb4226963566529c61b9e0e66ad3b8cf6d2ac816a50b1

  • SHA512

    248178ca6712731b0968f05d148749b401bce4a07d3b908307f7339fc4172d096e8f86e988f9b37527513ea67eb03abf075aabcbeac6a939a464f5d0802dbca1

  • SSDEEP

    24576:LpOKTNDuOb4Y7ZTqCBgdGIXFKcgLB37jvax:9OKTNDuOMYVWCBgdVXUcc5Cx

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      afc5476e0005cea5e19cb4226963566529c61b9e0e66ad3b8cf6d2ac816a50b1

    • Size

      812KB

    • MD5

      18e7ccdf0ca99c79cc5aff79c4c43ab6

    • SHA1

      e018aa42c35fdb811af839823656afb9821d00af

    • SHA256

      afc5476e0005cea5e19cb4226963566529c61b9e0e66ad3b8cf6d2ac816a50b1

    • SHA512

      248178ca6712731b0968f05d148749b401bce4a07d3b908307f7339fc4172d096e8f86e988f9b37527513ea67eb03abf075aabcbeac6a939a464f5d0802dbca1

    • SSDEEP

      24576:LpOKTNDuOb4Y7ZTqCBgdGIXFKcgLB37jvax:9OKTNDuOMYVWCBgdVXUcc5Cx

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks