Overview

overview

7

Static

static

3

Lua-Extension-W10.exe

windows7-x64

1

Lua-Extension-W10.exe

windows10-2004-x64

7

Lua-Extension-W10.pyc

windows7-x64

3

Lua-Extension-W10.pyc

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    Lua-Extension-W10.exe

  • Size

    22.6MB

  • Sample

    231103-q17apsbe3x

  • MD5

    9fa7e6954d63ddec5f2e687516a072c0

  • SHA1

    f62ced36e33da396d84ec0e19c666fb94c83df87

  • SHA256

    a69547fa1cdb85d01fe944f8927598ed9301ff238f3b41227bf4f6d990944f36

  • SHA512

    bd23da71fc51d0f78a5e726b97289ec2490472e5eb4356caddf61ed95f4c8b772583fa92dab4a6257a73cddaa128fb37022ca116845c7352a883d90b1932b75e

  • SSDEEP

    393216:+yoH7lAnQnB+s4JaOPhGL+9qzTLWI+6F26P/3OolCAd62V83bC:+yYcQBpJuhK+9q/LWI+6Fd/zR83

Score
7/10
pyinstallerspywarestealerupx

Malware Config

Targets

    • Target

      Lua-Extension-W10.exe

    • Size

      22.6MB

    • MD5

      9fa7e6954d63ddec5f2e687516a072c0

    • SHA1

      f62ced36e33da396d84ec0e19c666fb94c83df87

    • SHA256

      a69547fa1cdb85d01fe944f8927598ed9301ff238f3b41227bf4f6d990944f36

    • SHA512

      bd23da71fc51d0f78a5e726b97289ec2490472e5eb4356caddf61ed95f4c8b772583fa92dab4a6257a73cddaa128fb37022ca116845c7352a883d90b1932b75e

    • SSDEEP

      393216:+yoH7lAnQnB+s4JaOPhGL+9qzTLWI+6F26P/3OolCAd62V83bC:+yYcQBpJuhK+9q/LWI+6Fd/zR83

    Score
    7/10
    spywarestealerupx

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

    • Target

      Lua-Extension-W10.pyc

    • Size

      51KB

    • MD5

      04e19c676bda108cdfea700297a36a16

    • SHA1

      1fc5f547207cf35e61e23a1bbde1db2f3e0b4abb

    • SHA256

      c45613209a80818a8d95fed61a137bdfcced4f9ef0d4c1dbe6f14fcf3cede923

    • SHA512

      3e6b9bfa0f64f6606d469f059bbe69920e13c6f42c1bc636b03953f6ef7b07c89a1504391fb4edd39adeea8034866eee6d79b4ea4786d288c35cbbfec7f6a373

    • SSDEEP

      1536:t9MWnB0gZeR4o4sN8z/JPWjfW3XESDlhLxxUSgeC:1mq7JPsfmUaC

    Score
    3/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks