Overview

overview

7

Static

static

3

570936904f...73.exe

windows7-x64

7

570936904f...73.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    570936904f7edaa7d114ce8dc0c45a73

  • Size

    820KB

  • Sample

    231226-fwgt5sbgh9

  • MD5

    570936904f7edaa7d114ce8dc0c45a73

  • SHA1

    05d493505de32747829414dd2bb8eee5f0f4125e

  • SHA256

    6dd13f9824602e7e4d285b0a23a3f9f14ea0e3ff33300dfa316e183d1e7e104e

  • SHA512

    281e44289220c18b3f6d5c41f59f996c70e6b2a226a1335b0f881a77c7a1fb3badd5365ea101569de034ba845b01892f61001b2841c09b603d03d47d94553189

  • SSDEEP

    12288:JDKxRMfskuYXg9KjIFpeLh1TLa+HjH6+NJ+XukhAbMWYKStR42HojcFRXdt1X:FoRMEkuMUpeF1T+o8XukhkMWHQvRN

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      570936904f7edaa7d114ce8dc0c45a73

    • Size

      820KB

    • MD5

      570936904f7edaa7d114ce8dc0c45a73

    • SHA1

      05d493505de32747829414dd2bb8eee5f0f4125e

    • SHA256

      6dd13f9824602e7e4d285b0a23a3f9f14ea0e3ff33300dfa316e183d1e7e104e

    • SHA512

      281e44289220c18b3f6d5c41f59f996c70e6b2a226a1335b0f881a77c7a1fb3badd5365ea101569de034ba845b01892f61001b2841c09b603d03d47d94553189

    • SSDEEP

      12288:JDKxRMfskuYXg9KjIFpeLh1TLa+HjH6+NJ+XukhAbMWYKStR42HojcFRXdt1X:FoRMEkuMUpeF1T+o8XukhkMWHQvRN

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks