Overview

overview

7

Static

static

7

3e954c54d3...20.exe

windows7-x64

7

3e954c54d3...20.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3e954c54d350a6ff4acf6967af966a20

  • Size

    93KB

  • Sample

    240103-qhzg5sfhb4

  • MD5

    3e954c54d350a6ff4acf6967af966a20

  • SHA1

    c66f29e2f8eb8087977924349328d5086da1d794

  • SHA256

    4e34581ea0956dd6672a2baa6c402d8501971988aa719959b874ba363a4902c8

  • SHA512

    fe09ee6b856a3b8f5572be91ca1e03cc9fab3549c0d0e9e1af4890a6019cfcb4910d92ea31a4d7f99f3300b49995f205bfc918972eeef3116b9776f384d14383

  • SSDEEP

    1536:SKcR4mjD9r823F12wH8jnr84jX1IGfw9WIEzMqnEllDv/snVI21DcRyc:SKcWmjRrz3qrjbFIGfKWIEzMqi3sKscf

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      3e954c54d350a6ff4acf6967af966a20

    • Size

      93KB

    • MD5

      3e954c54d350a6ff4acf6967af966a20

    • SHA1

      c66f29e2f8eb8087977924349328d5086da1d794

    • SHA256

      4e34581ea0956dd6672a2baa6c402d8501971988aa719959b874ba363a4902c8

    • SHA512

      fe09ee6b856a3b8f5572be91ca1e03cc9fab3549c0d0e9e1af4890a6019cfcb4910d92ea31a4d7f99f3300b49995f205bfc918972eeef3116b9776f384d14383

    • SSDEEP

      1536:SKcR4mjD9r823F12wH8jnr84jX1IGfw9WIEzMqnEllDv/snVI21DcRyc:SKcWmjRrz3qrjbFIGfKWIEzMqi3sKscf

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks