Overview

overview

10

Static

static

3

SpaceVoid.exe

windows10-2004-x64

10

Resubmissions

17-07-2023 10:14

230717-l9sfpaca21 10

16-07-2023 10:29

230716-mjebtafb51 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SpaceVoid.exe

  • Size

    61.9MB

  • Sample

    230716-mjebtafb51

  • MD5

    d9c4f753f1ddc4f8c8f522a62658df6b

  • SHA1

    e1e03d21582cdf0b549cc743b296f306bd84cbb6

  • SHA256

    67f86d940e8e8eb73c09c9b37bef9248ed7e0ee0ec317fc118678ad44f69a63e

  • SHA512

    5741ab51d480632499b0ab9d8818435862f161bce916468d8d6f47f743af31f6a4577a18034bbdb824f722cecdcbc167ff74100cab105f113eec3420f891efcc

  • SSDEEP

    1572864:Mm6Fbg6Q7H8JiJK9Uvi8wI4kbLoXKrshom3/bIGlagM7:36Fc6GH8BianJwU6pm35lagM7

Score
10/10
epsilonstealer

Malware Config

Targets

    • Target

      SpaceVoid.exe

    • Size

      61.9MB

    • MD5

      d9c4f753f1ddc4f8c8f522a62658df6b

    • SHA1

      e1e03d21582cdf0b549cc743b296f306bd84cbb6

    • SHA256

      67f86d940e8e8eb73c09c9b37bef9248ed7e0ee0ec317fc118678ad44f69a63e

    • SHA512

      5741ab51d480632499b0ab9d8818435862f161bce916468d8d6f47f743af31f6a4577a18034bbdb824f722cecdcbc167ff74100cab105f113eec3420f891efcc

    • SSDEEP

      1572864:Mm6Fbg6Q7H8JiJK9Uvi8wI4kbLoXKrshom3/bIGlagM7:36Fc6GH8BianJwU6pm35lagM7

    Score
    10/10
    epsilonstealer

    • Detects EpsilonStealer ASAR

    • Epsilon Stealer

      Information stealer.

      stealerepsilon

    • Executes dropped EXE

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Process Discovery

1
T1057

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks