Overview

overview

8

Static

static

7

32718c3296...36.exe

windows7-x64

7

32718c3296...36.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    32718c32964b88fb6b9579baf528309c8bbbf62c7ac55ac2d4078dfb2d91e736

  • Size

    2.8MB

  • Sample

    231029-prhqbafg7t

  • MD5

    ff3403529c3d6f6d9d78bcc38eb00fbe

  • SHA1

    f503b4013218d3342403795157da1d7737dad622

  • SHA256

    32718c32964b88fb6b9579baf528309c8bbbf62c7ac55ac2d4078dfb2d91e736

  • SHA512

    100f7e9cb2eade76a0f1797873743befbadba5c943cfe9a7825b6046abeb1287ac8ad6c89a8c2469f441d53fde1c02fcaffdcabeb1adf1fced3f6da458db2d47

  • SSDEEP

    49152:lkWa+BGKpC4AXvULOHJmaS3JA5OmX8A93EIHT5GmM5y3ajTRAv+NJ77LEhs1bME9:7a6f8582JzSm4mjJEmMU3493L7bDntL/

Score
8/10
spywarestealerupx

Malware Config

Targets

    • Target

      32718c32964b88fb6b9579baf528309c8bbbf62c7ac55ac2d4078dfb2d91e736

    • Size

      2.8MB

    • MD5

      ff3403529c3d6f6d9d78bcc38eb00fbe

    • SHA1

      f503b4013218d3342403795157da1d7737dad622

    • SHA256

      32718c32964b88fb6b9579baf528309c8bbbf62c7ac55ac2d4078dfb2d91e736

    • SHA512

      100f7e9cb2eade76a0f1797873743befbadba5c943cfe9a7825b6046abeb1287ac8ad6c89a8c2469f441d53fde1c02fcaffdcabeb1adf1fced3f6da458db2d47

    • SSDEEP

      49152:lkWa+BGKpC4AXvULOHJmaS3JA5OmX8A93EIHT5GmM5y3ajTRAv+NJ77LEhs1bME9:7a6f8582JzSm4mjJEmMU3493L7bDntL/

    Score
    8/10
    upxspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks