a24d959ae807b4b4d2d9c012916d75ff9906071e188efc6fb70e79603e8dd4b8 | Triage

Sharing

General

Target

33bdf2dc402f2a6c3473add7ea6f33d9
Size

200KB
Sample

231225-wv2e6achc6
MD5

33bdf2dc402f2a6c3473add7ea6f33d9
SHA1

b4e7d6cadc6ef3d2ac28f037a880692e8eabb36f
SHA256

a24d959ae807b4b4d2d9c012916d75ff9906071e188efc6fb70e79603e8dd4b8
SHA512

52f5e79c3515d57f5a298accadf9b7b96f918a84e8a5b3ce119e6418ee376cf1e95f15ef3c791d87f1fc925169ef4ce293cbd4319463e6745a2c2f5c53fbb7fc
SSDEEP

6144:aVrtz0x510dmg03TVxrlHH42+u3av+VzTJ:oru4MZnlR8v+/

Score

8^/10

evasion spyware stealer upx

Malware Config

Targets

- Target
  
  ViRuS/1.exe
- Size
  
  102KB
- MD5
  
  c4b5655aaf8632b0e844f20dd16cd9d2
- SHA1
  
  e148f206b7e45655ec2eb833afed0223c06dd8c1
- SHA256
  
  07e9ef8b3345f401ce7417307a99b94a0c712b869336f21d062acba7b564996d
- SHA512
  
  622a9b941d43e3e6d2dc42f45256bada25e51c95ebabd4ee77fbeca2eadc91ce2cf59406fc4c6d38793c130cd5565471e5ebdaf9ae3e214cc88d338646a8b42d
- SSDEEP
  
  3072:ERYtsPf3eNa9HMBXGg9PkWO6xn6dDxNUQ:ERYt8MBXG6pO6daDkQ
Score

7^/10

upx
- Deletes itself
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  ViRuS/10.exe
- Size
  
  34KB
- MD5
  
  764c37641406a641632443ecaa546c10
- SHA1
  
  8da43e2bbfb019c370e028c5914e6fdad4288e95
- SHA256
  
  ad84d652581c49c7a966d4a581543b17b07b1c10b9cd5d9529cf955071210ce2
- SHA512
  
  92f6e33c990d13e8901fd413df97a0a2b00a4fedd022f76336a6f2fc67d5d3e537c6edf697247582123a941771916ed78938d1405feb922db70ac518c1916cc8
- SSDEEP
  
  768:rc05slHBjNk91nSZWn2StE83/8WsgWp8M:rc05Ehja9ZtnhdA78
Score

8^/10

evasion spyware stealer upx
- Stops running service(s)
  evasion
- Deletes itself
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral3 behavioral4
- Target
  
  ViRuS/11.exe
- Size
  
  33KB
- MD5
  
  c4a9439ce2582a99a39b7e2859703de9
- SHA1
  
  644b3c9a874a6e7dee4dfabc516bcf58b41bab34
- SHA256
  
  6b6072d5df08a0f883ff11f5c5f058fe22298e34bf7b37a3ec330a82fda93053
- SHA512
  
  ce7d8b80c954f82f7eafb05ea2cfdaef5393b1f8a3de42e4f9a82f2b39adf98992dead4881bd2f828cf40f6fdb1b39ae4babb28ecbdabe8fb2fbf55c65abf2b8
- SSDEEP
  
  768:3+b6GCOvFgxj2pQs97O0sEA+JGY65eoGP+iDhMR1mM:3dGCwAj2yWO0G7heoGP+TR11
Score

8^/10

evasion upx
- Stops running service(s)
  evasion
- Deletes itself
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral5 behavioral6
- Target
  
  ViRuS/12.exe
- Size
  
  33KB
- MD5
  
  7a51f4e32b67f11dd9430f2ec6f59787
- SHA1
  
  18411b124a16302003c64a8b0b56e21b2a668e74
- SHA256
  
  4adf0fe86ba4bd7629f7bf1895ba5cd7f168d57fbdb00a9d1a9663f772bab3d8
- SHA512
  
  f1b9d0b44e852a1a3bf07a062777c1fb7852b30faa6ed23d13e1d292d3a36761b0af67ab1636c2b010bfc57fc9b12d6336b46e16e5135bc43943437e240d3d49
- SSDEEP
  
  768:OlL3dG1XyZ8nrPiJAkV1ttmRtU8BUB4YPMPfkU:OayFRjtmRO8BS4YPMPfkU
Score

8^/10

evasion upx
- Stops running service(s)
  evasion
- Deletes itself
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

behavioral2

behavioral3

evasionspywarestealerupx

behavioral4

evasionspywarestealerupx

behavioral5

behavioral6

behavioral7

behavioral8