Analysis

  • max time kernel
    29s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    19-06-2023 20:18

General

  • Target

    hypersoft/Setup.exe

  • Size

    727KB

  • MD5

    2e3d71ef5b3654d2dc9055c697123612

  • SHA1

    9faca5768fc24020adf2cf39ef4881f16d1f81ec

  • SHA256

    277d1d39d2262422a4f843b05de9e5b827b56ee11efd41332ee0f0c03d170744

  • SHA512

    fee37cac08c9e33a34b16d658502ad0bc755931d62cfad99a1c6fa255fca760ddd01997f02197f8f640b03210c066ff92ead7797cc0e38ac488de2520f59ad6b

  • SSDEEP

    12288:aKizeLk6gtbn9cmGsT3FOgh/acKsAZrynxD11DgSOvDrvIyzTvijhzCfO:ziFpn9cmxXWsAxeVO7rvtPfO

Score
10/10

Malware Config

Signatures

  • Panda Stealer payload 2 IoCs
  • PandaStealer

    Panda Stealer is a fork of CollectorProject Stealer written in C++.

Processes

  • C:\Users\Admin\AppData\Local\Temp\hypersoft\Setup.exe
    "C:\Users\Admin\AppData\Local\Temp\hypersoft\Setup.exe"
    1⤵
      PID:960

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/960-54-0x00000000004C0000-0x0000000000563000-memory.dmp

      Filesize

      652KB

    • memory/960-60-0x00000000004C0000-0x0000000000563000-memory.dmp

      Filesize

      652KB