fd41d10abcf1d5febf2dbe9e4642137304325c34616bad6d483dcb5cc2f48f48 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

12a1a6b510...0d.exe

windows7-x64

7

12a1a6b510...0d.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

12a1a6b5108d55e3f8b948762f1be10d
Size

180KB
Sample

231225-kld3qacedq
MD5

12a1a6b5108d55e3f8b948762f1be10d
SHA1

9b5d1b0e26144a824837bf209144553af8be362d
SHA256

fd41d10abcf1d5febf2dbe9e4642137304325c34616bad6d483dcb5cc2f48f48
SHA512

ea2b272f3c6c0594bca4220d36176a78065ca53ede1f4e29bea0ec0417998dff2999b205bf7564e66893df6a1898ceeafb2ad9a430dad5d56431096c88ec12ac
SSDEEP

3072:imWVC2UXo0PzBTS6EPm0nb1aCdpOkPkIYJtQvBa9ZQHeGpGIsNYMjh3Xx5UPY:iZVC2wosUnb1NQ6ZpsZhGpuGMN3Dv

Score

7^/10

persistence spyware stealer upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

12a1a6b5108d55e3f8b948762f1be10d.exe

Resource

win7-20231129-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

12a1a6b5108d55e3f8b948762f1be10d.exe

Resource

win10v2004-20231215-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  12a1a6b5108d55e3f8b948762f1be10d
- Size
  
  180KB
- MD5
  
  12a1a6b5108d55e3f8b948762f1be10d
- SHA1
  
  9b5d1b0e26144a824837bf209144553af8be362d
- SHA256
  
  fd41d10abcf1d5febf2dbe9e4642137304325c34616bad6d483dcb5cc2f48f48
- SHA512
  
  ea2b272f3c6c0594bca4220d36176a78065ca53ede1f4e29bea0ec0417998dff2999b205bf7564e66893df6a1898ceeafb2ad9a430dad5d56431096c88ec12ac
- SSDEEP
  
  3072:imWVC2UXo0PzBTS6EPm0nb1aCdpOkPkIYJtQvBa9ZQHeGpGIsNYMjh3Xx5UPY:iZVC2wosUnb1NQ6ZpsZhGpuGMN3Dv
Score

7^/10

persistence spyware stealer upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistencespywarestealerupx

behavioral2

persistencespywarestealerupx

© 2018-2025

Terms | Privacy