Overview

overview

10

Static

static

3

1635b9e8e8...fd.exe

windows7-x64

10

1635b9e8e8...fd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1635b9e8e8903dd722f55536133cb1fd

  • Size

    169KB

  • Sample

    231230-mqsssaddg4

  • MD5

    1635b9e8e8903dd722f55536133cb1fd

  • SHA1

    8789cd379d3d32b58ce55b6eec325e0b8f83c91c

  • SHA256

    53b4cb5b5078fc52c255a996e1870dabff9cd5a16af0103fb4807abf43a9cc4f

  • SHA512

    345a967c038e581008afc784b44bdaaf9e5ee1a98c9441f32c6da33caa4d8cf3db5558f4eced75b2b0a3d1d038829e3ce9807ae74914af3a929516f832cb8465

  • SSDEEP

    3072:Vmy+mLhvDdC4psqLDSysGKrO7QqU/W9ffr1o0PyL0Kmnmw1zgsZVySHoUWIf:0y9O4G7rO7Qq+WNa0Y0znmAz3ian/f

Score
10/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      1635b9e8e8903dd722f55536133cb1fd

    • Size

      169KB

    • MD5

      1635b9e8e8903dd722f55536133cb1fd

    • SHA1

      8789cd379d3d32b58ce55b6eec325e0b8f83c91c

    • SHA256

      53b4cb5b5078fc52c255a996e1870dabff9cd5a16af0103fb4807abf43a9cc4f

    • SHA512

      345a967c038e581008afc784b44bdaaf9e5ee1a98c9441f32c6da33caa4d8cf3db5558f4eced75b2b0a3d1d038829e3ce9807ae74914af3a929516f832cb8465

    • SSDEEP

      3072:Vmy+mLhvDdC4psqLDSysGKrO7QqU/W9ffr1o0PyL0Kmnmw1zgsZVySHoUWIf:0y9O4G7rO7Qq+WNa0Y0znmAz3ian/f

    Score
    10/10
    persistencespywarestealerupx

    • Modifies WinLogon for persistence

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks