Overview

overview

10

Static

static

3

7a98c906b5...28.exe

windows7-x64

10

7a98c906b5...28.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    7a98c906b50e2e40ffc7196362c57228

  • Size

    180KB

  • Sample

    240127-sthd4sgeem

  • MD5

    7a98c906b50e2e40ffc7196362c57228

  • SHA1

    e712c73c7e00161650f6ec25b6f10234cbb06347

  • SHA256

    741ea37a735ecb42febd0fc52b9c9d2c8f016276acbe95c188c973f5bbecc26d

  • SHA512

    70f867afe3d7127a1e2f345d5a3b5308baa852e96da3634dd0fbc85c551077eb9ff4f9f1df7df76cab620978668b3895f17431b23aac0700321b4045164bf323

  • SSDEEP

    3072:thvXCB8ufSk9SHjCB/rbdC9w2Jdkp+Ttafg9gsiuWODoiFYzSN:Dy9j/rbsw2JwW+s7oiFYzSN

Score
10/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      7a98c906b50e2e40ffc7196362c57228

    • Size

      180KB

    • MD5

      7a98c906b50e2e40ffc7196362c57228

    • SHA1

      e712c73c7e00161650f6ec25b6f10234cbb06347

    • SHA256

      741ea37a735ecb42febd0fc52b9c9d2c8f016276acbe95c188c973f5bbecc26d

    • SHA512

      70f867afe3d7127a1e2f345d5a3b5308baa852e96da3634dd0fbc85c551077eb9ff4f9f1df7df76cab620978668b3895f17431b23aac0700321b4045164bf323

    • SSDEEP

      3072:thvXCB8ufSk9SHjCB/rbdC9w2Jdkp+Ttafg9gsiuWODoiFYzSN:Dy9j/rbsw2JwW+s7oiFYzSN

    Score
    10/10
    persistencespywarestealerupx

    • Modifies WinLogon for persistence

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks