Overview

overview

7

Static

static

7

09c2d2cb5f...82.exe

windows7-x64

7

09c2d2cb5f...82.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    09c2d2cb5f4c58ee7f11d9546a24e382

  • Size

    393KB

  • Sample

    231230-bmldrageck

  • MD5

    09c2d2cb5f4c58ee7f11d9546a24e382

  • SHA1

    c5c107f45d3ae3fc7b495b7572a824f35b67a176

  • SHA256

    d1fc0549bdfde45c5a50bc9ac39f6a32adbae5bc8da7f7340c65ee88f99d30ac

  • SHA512

    eed000a30de0a415cf7f7c1c9b5010f8eaa19150f1c3a21df5a7afa499b7d06bb9cc4c058685b219bec4e17778cb93bcd37a9dbff65f717cff2911ac96ae2840

  • SSDEEP

    6144:hGyGdWwj5PJximVLCABnzDxM1KD9V/ljjxENrDZf9JLUZEC:h3MpJxim9CABzDxJD/l5aZ/LUZEC

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      09c2d2cb5f4c58ee7f11d9546a24e382

    • Size

      393KB

    • MD5

      09c2d2cb5f4c58ee7f11d9546a24e382

    • SHA1

      c5c107f45d3ae3fc7b495b7572a824f35b67a176

    • SHA256

      d1fc0549bdfde45c5a50bc9ac39f6a32adbae5bc8da7f7340c65ee88f99d30ac

    • SHA512

      eed000a30de0a415cf7f7c1c9b5010f8eaa19150f1c3a21df5a7afa499b7d06bb9cc4c058685b219bec4e17778cb93bcd37a9dbff65f717cff2911ac96ae2840

    • SSDEEP

      6144:hGyGdWwj5PJximVLCABnzDxM1KD9V/ljjxENrDZf9JLUZEC:h3MpJxim9CABzDxJD/l5aZ/LUZEC

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks