Overview

overview

8

Static

static

aba18aa815...18.exe

windows7-x64

8

aba18aa815...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aba18aa815d18357717202cbeff19586663a7f158b8a59021ac82df321b8b518

  • Size

    816KB

  • Sample

    221206-ymp39sbg6z

  • MD5

    c08df745a0fe1d07a41bb2fa87dc5b95

  • SHA1

    d1ac9f49879d87d3d4c3f00b1ed5a3df958d7d11

  • SHA256

    aba18aa815d18357717202cbeff19586663a7f158b8a59021ac82df321b8b518

  • SHA512

    234aeedfe40ad2a58965482e279282f41409262e9161952c79c41a2086f8712ad87ae396a3053fc683ade2d27898187698b12dd9ba649c59d6dcb9c696523609

  • SSDEEP

    12288:cmySiEZunGw9vBiByutK/vIMERU8FQscHJOxZRi5pQY79nBY9yKZ89cIBnHVTyjg:cLSNZunGgBir4ww8qUjM5bEy4UcIAUj

Score
8/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      aba18aa815d18357717202cbeff19586663a7f158b8a59021ac82df321b8b518

    • Size

      816KB

    • MD5

      c08df745a0fe1d07a41bb2fa87dc5b95

    • SHA1

      d1ac9f49879d87d3d4c3f00b1ed5a3df958d7d11

    • SHA256

      aba18aa815d18357717202cbeff19586663a7f158b8a59021ac82df321b8b518

    • SHA512

      234aeedfe40ad2a58965482e279282f41409262e9161952c79c41a2086f8712ad87ae396a3053fc683ade2d27898187698b12dd9ba649c59d6dcb9c696523609

    • SSDEEP

      12288:cmySiEZunGw9vBiByutK/vIMERU8FQscHJOxZRi5pQY79nBY9yKZ89cIBnHVTyjg:cLSNZunGgBir4ww8qUjM5bEy4UcIAUj

    Score
    8/10
    discoverypersistencespywarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks