Overview

overview

7

Static

static

7

SggMMt.exe

windows7-x64

1

SggMMt.exe

windows10-2004-x64

1

smtiestarter.dll

windows7-x64

7

smtiestarter.dll

windows10-2004-x64

7

smtuninst.exe

windows7-x64

7

smtuninst.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    79a8acdd5fa0b0c90cb483f295f51967

  • Size

    770KB

  • Sample

    240127-jhqrnsheel

  • MD5

    79a8acdd5fa0b0c90cb483f295f51967

  • SHA1

    1ca8c8b2fcf78ba9e15dcfcd7b6a169fbed4e86e

  • SHA256

    3fb0542513b89a1a4225f95863447cd9efc1c58398cab3158ebe893f3ea13258

  • SHA512

    9685149716a58485d3cb8a7c4f9c18b14fc2f8bc6251964b4792e7af47e8e6e4c37b42189d1839e600fd8449ae03300e47222df2a57b997f729a36ab454ce8e8

  • SSDEEP

    24576:QbT8s3g9t+nlyYpN5THZys08guXqDfUzFx3:Q3rg9talR5TxkuzFZ

Score
7/10
adwarestealerupx

Malware Config

Targets

    • Target

      SggMMt.exe

    • Size

      745KB

    • MD5

      b96486457316b045cabeffd01416d54f

    • SHA1

      4ff840021378039b0d5a8c8bf887164545076474

    • SHA256

      dee6fa27ffc5fd1e743d537d176c4afdc7e5b4ebb1a5f39f58eedf6f8b3ae324

    • SHA512

      399add3161baf82947360792d096b9d0f53120b4de2671ddec07c48a293570366ad58a6157108fcd0807699e563e94e5c3dce76f1e940e20d6fc44136a9cc1e5

    • SSDEEP

      12288:4uL4lGdCCY8qOkg7PsjObOd0rKyhzUIlGwAmsFuz2Y+4XxG0l3LX9RB:4xUYtOkg7kObG0BhzvumsF0Tx40l3j9f

    Score
    1/10
    behavioral1behavioral2

    • Target

      smtiestarter.dll

    • Size

      194KB

    • MD5

      e78aea971de3c3dbcfb70c0b08293fa6

    • SHA1

      7151e06e4f2c2902d01a8548693adfa02bf09d53

    • SHA256

      d30e8d6a356d110102c1e2edcc2b013dc2897398fffc5f5c2d1aa83d20cca0ce

    • SHA512

      025a5e437d2c2f7ce476dbf268e912a47562e163f93d7641a8f10c86c201da3d9a3b1ad3c30bc69507c1a270f32eca477f274678e2c8b7d280f3619fbbf3d8a1

    • SSDEEP

      6144:6mXy8TQdqfiI8zhVXjnb4iElu41oeZ/X:WEfiLhVP4iCBZ

    Score
    7/10
    adwarestealerupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral3behavioral4

    • Target

      smtuninst.exe

    • Size

      221KB

    • MD5

      f64fad676b4d248c1a4c48f6af993886

    • SHA1

      ed77ea6401a8cfb0b92f2cc082bac016c2f89dc8

    • SHA256

      ff5f752015b910541796437895ef76e397913c06f28e28049d77c2f1737ef7ec

    • SHA512

      f9917f99aaa3273090ea75138baea5b85da130e6f9847c3884dc2c05062908b48ea6f68b0d1b33fcac083ba58d8bbdaaa4d693ba322bca98b46487b177555c7b

    • SSDEEP

      3072:dvUKOnZaxaqbSPGyFDjJLDuSW+xQnMh09TfUBy689RoZSlGdRcUqwh8C1Z+iM:+KGayVVjWVnMh09TbQZXAUqwh8ZiM

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks