aee947034f9d79bb1e2332cbcc42a7f7d88a6fb6746048e420bbb38931263081 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e9dd0cb22ed13638c27b89e170f47baa.bin
Size

2.9MB
Sample

230320-b5xvhabb97
MD5

9638092c15745aca7f24f2a84d6bb18e
SHA1

43b7f3d4ad7601833028b34961c70a7231794657
SHA256

aee947034f9d79bb1e2332cbcc42a7f7d88a6fb6746048e420bbb38931263081
SHA512

9e8837f4105832890a18d53d139430d3de81aa34a0f76533f5be16885841ec9094efe2076f6e5d3cff9840401656019533bb0b5218f8c59f69fea0c3eb8e1e9c
SSDEEP

49152:zcvFvlb9DtxK5dimuyDq26lpgqk3UeYl8cfSvdGpc0vF8bYSmGExu99NTBydLgpu:zcvp59DtxAwmzD56lWJmQwc0t8bYSmQc

Score

7^/10

spyware stealer upx

Malware Config

Targets

- Target
  
  1211c91dff0549dc0506b65fd4c8631377db4fcc7ceb7387ccc845da82dcbd9e.exe
- Size
  
  3.0MB
- MD5
  
  e9dd0cb22ed13638c27b89e170f47baa
- SHA1
  
  adc72fde2aa5981a23c64f6441d91b11601f36c9
- SHA256
  
  1211c91dff0549dc0506b65fd4c8631377db4fcc7ceb7387ccc845da82dcbd9e
- SHA512
  
  38102ce8f30f8d861ea88efd1701ea2a0ea3c4664651a4e1eacd6e2f9d1cd956c76c21c33a9bf24788f922ac6689974638e5c5fea0a65c2a657bbd5fd81a4908
- SSDEEP
  
  49152:NaGpfwh4FrqhWQa0W0rV3gyLSd6T72/3vHVui/WpgCISGsYxn5lJ7oI3IIkudyQ0:PfA4FrfpySc+XMCWGCIZxHJ0OyQz+tVd
Score

7^/10

spyware stealer upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

spywarestealerupx

behavioral2

spywarestealerupx