Overview

overview

7

Static

static

7

b19cc27771...JC.exe

windows7-x64

7

b19cc27771...JC.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b19cc27771394c3d90c28fdb23215cc3_JC.exe

  • Size

    438KB

  • Sample

    230923-qmt38aff8s

  • MD5

    b19cc27771394c3d90c28fdb23215cc3

  • SHA1

    6dd020356de5c48dbfdc9028b4b0996cee99bf92

  • SHA256

    4a5c822b4e83e0722ae8aa1842b05b4022587eb2808ef8b1c84382b1f2527c8a

  • SHA512

    a50a17f774d6f392e8bec312a0cd76757869e8f9f1f291b3f016b6e95834dc6a23abf26e5ef163b0294c977007a5eab570a81ef18509fc7d1ad97c6f02ecb5d3

  • SSDEEP

    6144:/GrpJMpqojYraTWomVjJO0DDDjC/tPhpTkPpMPM7Atvt44No/WxMc85V2JEI0KWB:/CKseWomPrHD2FPbkPV7exj85VTI0QtM

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      b19cc27771394c3d90c28fdb23215cc3_JC.exe

    • Size

      438KB

    • MD5

      b19cc27771394c3d90c28fdb23215cc3

    • SHA1

      6dd020356de5c48dbfdc9028b4b0996cee99bf92

    • SHA256

      4a5c822b4e83e0722ae8aa1842b05b4022587eb2808ef8b1c84382b1f2527c8a

    • SHA512

      a50a17f774d6f392e8bec312a0cd76757869e8f9f1f291b3f016b6e95834dc6a23abf26e5ef163b0294c977007a5eab570a81ef18509fc7d1ad97c6f02ecb5d3

    • SSDEEP

      6144:/GrpJMpqojYraTWomVjJO0DDDjC/tPhpTkPpMPM7Atvt44No/WxMc85V2JEI0KWB:/CKseWomPrHD2FPbkPV7exj85VTI0QtM

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks