Overview

overview

7

Static

static

7

e02c94f291...50.exe

windows7-x64

7

e02c94f291...50.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    e02c94f2916587b2aecd316ed3797c50.bin

  • Size

    46KB

  • Sample

    240328-d6vsmsbe25

  • MD5

    e02c94f2916587b2aecd316ed3797c50

  • SHA1

    e786a03b8b1e26edafaa74af8b196c7a93fce088

  • SHA256

    9497654613e5738228be45a995898152b8d13137bc5aeaba12ae203ddeefb8b7

  • SHA512

    e511b86a32c74d5946a33a5ad257ebb138adddccd46eb3f87543f4d1737ccb8cc783cb393a83a5435b0cb9f7396792ab2cdb88555269418bf82a8c58b5dc609a

  • SSDEEP

    768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFaaa3IMZZ3RkSukI:SKcR4mjD9r823FSFnuJ

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      e02c94f2916587b2aecd316ed3797c50.bin

    • Size

      46KB

    • MD5

      e02c94f2916587b2aecd316ed3797c50

    • SHA1

      e786a03b8b1e26edafaa74af8b196c7a93fce088

    • SHA256

      9497654613e5738228be45a995898152b8d13137bc5aeaba12ae203ddeefb8b7

    • SHA512

      e511b86a32c74d5946a33a5ad257ebb138adddccd46eb3f87543f4d1737ccb8cc783cb393a83a5435b0cb9f7396792ab2cdb88555269418bf82a8c58b5dc609a

    • SSDEEP

      768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFaaa3IMZZ3RkSukI:SKcR4mjD9r823FSFnuJ

    Score
    7/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks