6135358083176540d873c743ff2e07d548c50607d0505d43acdd862259543eca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6135358083176540d873c743ff2e07d548c50607d0505d43acdd862259543eca
Size

2.4MB
Sample

230215-17e5xaee26
MD5

4a6b849ab81f41a63f35c6cbcfcdfc80
SHA1

e96139702c07b6cc7c26bba434f9986863b47660
SHA256

6135358083176540d873c743ff2e07d548c50607d0505d43acdd862259543eca
SHA512

d2e59454302103ba66169a6ee16cf0e65cbc8df5cc5558c60177a5751a857e07df8c5c079341327b5255466e55037acad16bcea73fa49296626aa87eedaf2c81
SSDEEP

49152:XkdPPFBrHcyhshP+3Wvw49g6+sflDok0czMeXrr0sAUndhU8prtu:XcPPrDxsc3uw4IUlcUJ/HwYtu

Score

7^/10

spyware stealer upx

Malware Config

Targets

- Target
  
  6135358083176540d873c743ff2e07d548c50607d0505d43acdd862259543eca
- Size
  
  2.4MB
- MD5
  
  4a6b849ab81f41a63f35c6cbcfcdfc80
- SHA1
  
  e96139702c07b6cc7c26bba434f9986863b47660
- SHA256
  
  6135358083176540d873c743ff2e07d548c50607d0505d43acdd862259543eca
- SHA512
  
  d2e59454302103ba66169a6ee16cf0e65cbc8df5cc5558c60177a5751a857e07df8c5c079341327b5255466e55037acad16bcea73fa49296626aa87eedaf2c81
- SSDEEP
  
  49152:XkdPPFBrHcyhshP+3Wvw49g6+sflDok0czMeXrr0sAUndhU8prtu:XcPPrDxsc3uw4IUlcUJ/HwYtu
Score

7^/10

spyware stealer upx
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

spywarestealerupx

behavioral2

spywarestealerupx