Overview

overview

7

Static

static

7

2b2641c5ea...9d.exe

windows7-x64

7

2b2641c5ea...9d.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b2641c5ea9d7b0dbc7f28cef989b99d

  • Size

    363KB

  • Sample

    231231-gtrf8sbhgr

  • MD5

    2b2641c5ea9d7b0dbc7f28cef989b99d

  • SHA1

    ccd079663d150eecf4bfec503daeff98856ead19

  • SHA256

    abeae228298701d39dd08a002c88c0ea95bed2285d2acdeaf37a48c4c5e6278a

  • SHA512

    43335e148ce65bea289f96e568831591cf71faf078836acfa4706825235c0666d2441f0608e7ece97849fb5bb88ea85075c692ad45a3e407da80e2d13c450fae

  • SSDEEP

    6144:hG4S3utBm1/JIq5afHY2ui5Ne9gvovD/awhAlYHMLddo9NQEeQiOJu:hgutIX5SpQgGD/awelYHM52CEFVJu

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      2b2641c5ea9d7b0dbc7f28cef989b99d

    • Size

      363KB

    • MD5

      2b2641c5ea9d7b0dbc7f28cef989b99d

    • SHA1

      ccd079663d150eecf4bfec503daeff98856ead19

    • SHA256

      abeae228298701d39dd08a002c88c0ea95bed2285d2acdeaf37a48c4c5e6278a

    • SHA512

      43335e148ce65bea289f96e568831591cf71faf078836acfa4706825235c0666d2441f0608e7ece97849fb5bb88ea85075c692ad45a3e407da80e2d13c450fae

    • SSDEEP

      6144:hG4S3utBm1/JIq5afHY2ui5Ne9gvovD/awhAlYHMLddo9NQEeQiOJu:hgutIX5SpQgGD/awelYHM52CEFVJu

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks