Overview

overview

7

Static

static

7

860d3e9ff2...35.exe

windows7-x64

7

860d3e9ff2...35.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    860d3e9ff23b244d3aa897c9f307b235

  • Size

    115KB

  • Sample

    240201-f6cceacca3

  • MD5

    860d3e9ff23b244d3aa897c9f307b235

  • SHA1

    a3b3420fc835a86407c7bcaf374b293e6e09d8f1

  • SHA256

    79d1c004a1243c2cb3ba2e4045c2b6fc042f0e3be8e8b415a7f8002096dab748

  • SHA512

    e9955d045bb1ae6fcdc4463fa19989e426205a3609d1e16b874f82df913a648faa009d06c3fd8c196a80f50b73b6e55b1c33beab877cd62c784b1d74644b3551

  • SSDEEP

    3072:SKcWmjRrz3ZKcWmjRrz3nE04VvrPlr3O+7UByQs:hGyGnErVvrd3Qs

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      860d3e9ff23b244d3aa897c9f307b235

    • Size

      115KB

    • MD5

      860d3e9ff23b244d3aa897c9f307b235

    • SHA1

      a3b3420fc835a86407c7bcaf374b293e6e09d8f1

    • SHA256

      79d1c004a1243c2cb3ba2e4045c2b6fc042f0e3be8e8b415a7f8002096dab748

    • SHA512

      e9955d045bb1ae6fcdc4463fa19989e426205a3609d1e16b874f82df913a648faa009d06c3fd8c196a80f50b73b6e55b1c33beab877cd62c784b1d74644b3551

    • SSDEEP

      3072:SKcWmjRrz3ZKcWmjRrz3nE04VvrPlr3O+7UByQs:hGyGnErVvrd3Qs

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks