Overview

overview

7

Static

static

1

Setup_File...24.exe

windows7-x64

7

Setup_File...24.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Setup_FileViewPro_2024.exe

  • Size

    1.3MB

  • Sample

    240404-z6mb6aaf4z

  • MD5

    9462e2b4992e3ea63f3f04c499dc5a05

  • SHA1

    9e57c55d9d51d6eabda71ffdfaf48709209943e2

  • SHA256

    46cdc38806d00295bb3d6c87a2d06a3aefe648c8a1bb7e7aa54abe37019a96aa

  • SHA512

    3f5d68ceeb34a24a91a2718e645564dbc2c6a75d018a517f9884f1a228140ee00f5108e00d43f3feeaf5f40cf391a44d81ec90fd63d445ecb1e3f2675dd3f13d

  • SSDEEP

    24576:ih6SVFzDl6eZmL4v9IoYOlrQ14T1+G05hKwzlXX8l8whkwBY2/+WLHkO4H:K6UXtvDz85hK8XM8rcY/OI

Score
7/10
discoveryspywarestealerupx

Malware Config

Targets

    • Target

      Setup_FileViewPro_2024.exe

    • Size

      1.3MB

    • MD5

      9462e2b4992e3ea63f3f04c499dc5a05

    • SHA1

      9e57c55d9d51d6eabda71ffdfaf48709209943e2

    • SHA256

      46cdc38806d00295bb3d6c87a2d06a3aefe648c8a1bb7e7aa54abe37019a96aa

    • SHA512

      3f5d68ceeb34a24a91a2718e645564dbc2c6a75d018a517f9884f1a228140ee00f5108e00d43f3feeaf5f40cf391a44d81ec90fd63d445ecb1e3f2675dd3f13d

    • SSDEEP

      24576:ih6SVFzDl6eZmL4v9IoYOlrQ14T1+G05hKwzlXX8l8whkwBY2/+WLHkO4H:K6UXtvDz85hK8XM8rcY/OI

    Score
    7/10
    discoveryspywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scheduled Task/Job

1
T1053

Persistence

Scheduled Task/Job

1
T1053

Privilege Escalation

Scheduled Task/Job

1
T1053

Defense Evasion

Modify Registry

2
T1112

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

Query Registry

3
T1012

System Information Discovery

3
T1082

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks