Overview

overview

8

Static

static

3

89maiwdD2.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    89maiwdD2.exe

  • Size

    7.3MB

  • Sample

    230530-magqksgh94

  • MD5

    4caf6ea473df821922cdbb0b45fb716b

  • SHA1

    2577f273c7faf471746d8dd5099d210127884286

  • SHA256

    7a07c007b1a25e8e8b0036466b2556a20a037502b42cd5c17189f3480ed73d68

  • SHA512

    1fe5530389b375b0ab620dba081a809424ed92a798d4e20ab73e3be0639e1dbd802295bab2b35a912e1c5a632f312e5a3581ce50ea6947fcc0f2662d071a3ff7

  • SSDEEP

    196608:9mih8FwjL/l3FOjmFEfld+RdfGYkdai7bN3mVgde2pzz9/SsmdmH:YLFeAKI8nGdB3QOhzRRmQ

Score
8/10
pyinstallerspywarestealerupx

Malware Config

Targets

    • Target

      89maiwdD2.exe

    • Size

      7.3MB

    • MD5

      4caf6ea473df821922cdbb0b45fb716b

    • SHA1

      2577f273c7faf471746d8dd5099d210127884286

    • SHA256

      7a07c007b1a25e8e8b0036466b2556a20a037502b42cd5c17189f3480ed73d68

    • SHA512

      1fe5530389b375b0ab620dba081a809424ed92a798d4e20ab73e3be0639e1dbd802295bab2b35a912e1c5a632f312e5a3581ce50ea6947fcc0f2662d071a3ff7

    • SSDEEP

      196608:9mih8FwjL/l3FOjmFEfld+RdfGYkdai7bN3mVgde2pzz9/SsmdmH:YLFeAKI8nGdB3QOhzRRmQ

    Score
    8/10
    spywarestealerupx

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks