Overview

overview

7

Static

static

7

8b1a910422...b9.exe

windows7-x64

7

8b1a910422...b9.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8b1a9104229be166347f96c53d81c8b9

  • Size

    483KB

  • Sample

    240203-cghw4sggdp

  • MD5

    8b1a9104229be166347f96c53d81c8b9

  • SHA1

    f19e03a55a8580e006046ed6129159dfa80072c3

  • SHA256

    73a477f56d83bb5d473f0a360b9b2e1843b1c06987615dc396394226dc927722

  • SHA512

    136652c1b47edefab3d695702de10a0a9fa5426ae587243131e2ca1f4c478b016ffbf285e441d4ff6307a01340dd23a865f2145c1f052d7dd1134a3aee980872

  • SSDEEP

    12288:/Q5BU3LHRFSs6o/rsao1Ogj7phS5CzrPw5IwvkkQj:/4M3rd/YmgmUrGIw8kk

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      8b1a9104229be166347f96c53d81c8b9

    • Size

      483KB

    • MD5

      8b1a9104229be166347f96c53d81c8b9

    • SHA1

      f19e03a55a8580e006046ed6129159dfa80072c3

    • SHA256

      73a477f56d83bb5d473f0a360b9b2e1843b1c06987615dc396394226dc927722

    • SHA512

      136652c1b47edefab3d695702de10a0a9fa5426ae587243131e2ca1f4c478b016ffbf285e441d4ff6307a01340dd23a865f2145c1f052d7dd1134a3aee980872

    • SSDEEP

      12288:/Q5BU3LHRFSs6o/rsao1Ogj7phS5CzrPw5IwvkkQj:/4M3rd/YmgmUrGIw8kk

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks