Overview

overview

7

Static

static

7

63e2a83c9b...8e.exe

windows7-x64

7

63e2a83c9b...8e.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    63e2a83c9bbd8236fba1b2fc84bf998e

  • Size

    35KB

  • Sample

    240117-3e6s9sgdar

  • MD5

    63e2a83c9bbd8236fba1b2fc84bf998e

  • SHA1

    b82dbdb65d8ba0a8ea56d30761b8637d4715ef78

  • SHA256

    a5ce0b056a1fea5ce4aa532acf27a78e8640573fcbfad58d5a604f1431701c37

  • SHA512

    5e418ae21a2b56753d593c671e5934710e1992470948c566e4d64185099e5429291213a54b6f02b4097018d0c6ccf393b0b0d111d0a727f866921f2a3ffb708b

  • SSDEEP

    768:X8Q2ZDX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIom46+IV:s9Z3KcR4mjD9r8226+k

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      63e2a83c9bbd8236fba1b2fc84bf998e

    • Size

      35KB

    • MD5

      63e2a83c9bbd8236fba1b2fc84bf998e

    • SHA1

      b82dbdb65d8ba0a8ea56d30761b8637d4715ef78

    • SHA256

      a5ce0b056a1fea5ce4aa532acf27a78e8640573fcbfad58d5a604f1431701c37

    • SHA512

      5e418ae21a2b56753d593c671e5934710e1992470948c566e4d64185099e5429291213a54b6f02b4097018d0c6ccf393b0b0d111d0a727f866921f2a3ffb708b

    • SSDEEP

      768:X8Q2ZDX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIom46+IV:s9Z3KcR4mjD9r8226+k

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks