Overview

overview

7

Static

static

7

9abf9246d1...8a.exe

windows7-x64

7

9abf9246d1...8a.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    9abf9246d191a9771bf4bb0ed8b7358a

  • Size

    207KB

  • Sample

    240214-e15akaab69

  • MD5

    9abf9246d191a9771bf4bb0ed8b7358a

  • SHA1

    5ee7b69aa9d7465ee0eab2d27a7eb2b505a031ac

  • SHA256

    1e9ffa9b93e6e5e93f015cdf7e972e06abda2705394ca4e52b6b05c0e9030ca7

  • SHA512

    277b8b413f31b107cf7ee9db3ff648fe38fcd516bb251284561d304bc4da60418b9a05a99ca50f08eb5111789455435f9266acfc98af0cb6cab403e316bf6d1f

  • SSDEEP

    3072:SKcWmjRrz3QzOizHJcOim6fLbImL7wUWPSDr5M5X6UP8JZgtfPtvVNvuPEVcrS:hGQMbfLNLEUWe5UX6UQCt3ZHcrS

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      9abf9246d191a9771bf4bb0ed8b7358a

    • Size

      207KB

    • MD5

      9abf9246d191a9771bf4bb0ed8b7358a

    • SHA1

      5ee7b69aa9d7465ee0eab2d27a7eb2b505a031ac

    • SHA256

      1e9ffa9b93e6e5e93f015cdf7e972e06abda2705394ca4e52b6b05c0e9030ca7

    • SHA512

      277b8b413f31b107cf7ee9db3ff648fe38fcd516bb251284561d304bc4da60418b9a05a99ca50f08eb5111789455435f9266acfc98af0cb6cab403e316bf6d1f

    • SSDEEP

      3072:SKcWmjRrz3QzOizHJcOim6fLbImL7wUWPSDr5M5X6UP8JZgtfPtvVNvuPEVcrS:hGQMbfLNLEUWe5UX6UQCt3ZHcrS

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks