Overview

overview

7

Static

static

7

5740a07aec...d9.exe

windows7-x64

7

5740a07aec...d9.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    5740a07aec6c7c1742f7367590760fd9

  • Size

    48KB

  • Sample

    240112-xnpnfsede3

  • MD5

    5740a07aec6c7c1742f7367590760fd9

  • SHA1

    619b38d8aa1e6f76f851391c6c3fec4fdc0b60d7

  • SHA256

    c08a390126153843fcd194856a29b28168fd061cb0b16a45fb799cb60f1ffa5e

  • SHA512

    a283b776afe2989dec2b8a440fbe91ea448f57dcd7b4cec72ed55f792ef5729d2575cbcea48fad509479c50916279251fe27fc9172e6bd518c601115c6aa8716

  • SSDEEP

    768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFm/kpwvonwsGzewtKm2+:SKcR4mjD9r823FamGzFK9kag7qen

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      5740a07aec6c7c1742f7367590760fd9

    • Size

      48KB

    • MD5

      5740a07aec6c7c1742f7367590760fd9

    • SHA1

      619b38d8aa1e6f76f851391c6c3fec4fdc0b60d7

    • SHA256

      c08a390126153843fcd194856a29b28168fd061cb0b16a45fb799cb60f1ffa5e

    • SHA512

      a283b776afe2989dec2b8a440fbe91ea448f57dcd7b4cec72ed55f792ef5729d2575cbcea48fad509479c50916279251fe27fc9172e6bd518c601115c6aa8716

    • SSDEEP

      768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFm/kpwvonwsGzewtKm2+:SKcR4mjD9r823FamGzFK9kag7qen

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks