Overview

overview

7

Static

static

7

3f8da70716...JC.exe

windows7-x64

7

3f8da70716...JC.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3f8da70716aa7b06c4f7721ca6ffee80_JC.exe

  • Size

    88KB

  • Sample

    231011-qsx23aca99

  • MD5

    3f8da70716aa7b06c4f7721ca6ffee80

  • SHA1

    a11ade24382c376ad717223412285df2d2b813cd

  • SHA256

    92eb249cc1c6a4a1b4fd45903964fdcd7e6e1278b42c98464983a9c762eaa33b

  • SHA512

    2db620d26c99cb0a4936214a368f2199b81e0098b29c39e825bf7849a465f5c949372c5f15d40661ae9eefa6671314de648ec026634377f3af7d8e014065b004

  • SSDEEP

    1536:GFcNjQlsWjcd+xzl7SM+Gn8255NeoqbiO9qZ6:GQjr87S7Gnz55Eo3O9L

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      3f8da70716aa7b06c4f7721ca6ffee80_JC.exe

    • Size

      88KB

    • MD5

      3f8da70716aa7b06c4f7721ca6ffee80

    • SHA1

      a11ade24382c376ad717223412285df2d2b813cd

    • SHA256

      92eb249cc1c6a4a1b4fd45903964fdcd7e6e1278b42c98464983a9c762eaa33b

    • SHA512

      2db620d26c99cb0a4936214a368f2199b81e0098b29c39e825bf7849a465f5c949372c5f15d40661ae9eefa6671314de648ec026634377f3af7d8e014065b004

    • SSDEEP

      1536:GFcNjQlsWjcd+xzl7SM+Gn8255NeoqbiO9qZ6:GQjr87S7Gnz55Eo3O9L

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks