Overview

overview

7

Static

static

7

471154c01b...0a.exe

windows7-x64

7

471154c01b...0a.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    471154c01b28352440105f6fdbbf6e0a

  • Size

    54KB

  • Sample

    240106-ysakrsefbp

  • MD5

    471154c01b28352440105f6fdbbf6e0a

  • SHA1

    e24c7dae22b77fb287378274a9ea70a0706bb66e

  • SHA256

    9401ab11c0d8d62cec20369354944f5a44bfb93d7c65890421b37ad89ecb14aa

  • SHA512

    c08cb4096931b2c9ab218489c4826e7071ac39cf1eaf0d316f2ba58ea71d0b3faf83def23e22abcb24d3665c23274948f994a1ce1310bacdab71ad0fb9b263f4

  • SSDEEP

    768:X8Q2ZDX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIom46+IfRGYNvFSt9Ql18SJp:s9Z3KcR4mjD9r8226+QRhxFSrN+f

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      471154c01b28352440105f6fdbbf6e0a

    • Size

      54KB

    • MD5

      471154c01b28352440105f6fdbbf6e0a

    • SHA1

      e24c7dae22b77fb287378274a9ea70a0706bb66e

    • SHA256

      9401ab11c0d8d62cec20369354944f5a44bfb93d7c65890421b37ad89ecb14aa

    • SHA512

      c08cb4096931b2c9ab218489c4826e7071ac39cf1eaf0d316f2ba58ea71d0b3faf83def23e22abcb24d3665c23274948f994a1ce1310bacdab71ad0fb9b263f4

    • SSDEEP

      768:X8Q2ZDX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIom46+IfRGYNvFSt9Ql18SJp:s9Z3KcR4mjD9r8226+QRhxFSrN+f

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks