Overview

overview

10

Static

static

3

240b48d6e5...69.exe

windows7-x64

10

240b48d6e5...69.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    240b48d6e583ef294df0838fe126c469

  • Size

    169KB

  • Sample

    231231-cmc8tafag8

  • MD5

    240b48d6e583ef294df0838fe126c469

  • SHA1

    38c1b14dd27d6127c34f3219e55a9d79db57d688

  • SHA256

    e2c193df2d5e7eff25fe7cae90e96901b20233b8991c3aa33bc6440ff8a7097f

  • SHA512

    15263abfcb1a63f0e2d27e7f00471ad4e38032357710ae9fd32b50f2f64d1ef6daa15b3beddc1c52c7b8237a0a3f4d8c68247562c70744f37d0714c3f40aaeae

  • SSDEEP

    3072:IK+5h1sbgQwaIAzEwXU6rOL9S582Ymd8JZ/89VQCcCZinF0O/T0VbqJI:hYm3ywEIE9wsX/cXZZoTgJ

Score
10/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      240b48d6e583ef294df0838fe126c469

    • Size

      169KB

    • MD5

      240b48d6e583ef294df0838fe126c469

    • SHA1

      38c1b14dd27d6127c34f3219e55a9d79db57d688

    • SHA256

      e2c193df2d5e7eff25fe7cae90e96901b20233b8991c3aa33bc6440ff8a7097f

    • SHA512

      15263abfcb1a63f0e2d27e7f00471ad4e38032357710ae9fd32b50f2f64d1ef6daa15b3beddc1c52c7b8237a0a3f4d8c68247562c70744f37d0714c3f40aaeae

    • SSDEEP

      3072:IK+5h1sbgQwaIAzEwXU6rOL9S582Ymd8JZ/89VQCcCZinF0O/T0VbqJI:hYm3ywEIE9wsX/cXZZoTgJ

    Score
    10/10
    persistencespywarestealerupx

    • Modifies WinLogon for persistence

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks