Overview

overview

7

Static

static

3

GalaxiaViva.exe

windows7-x64

7

GalaxiaViva.exe

windows10-1703-x64

7

GalaxiaViva.exe

windows10-2004-x64

7

GalaxiaViva.exe

windows11-21h2-x64

7

Installer.exe

windows7-x64

7

Installer.exe

windows10-1703-x64

7

Installer.exe

windows10-2004-x64

7

Installer.exe

windows11-21h2-x64

7

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-1703-x64

1

resources/elevate.exe

windows10-2004-x64

1

resources/elevate.exe

windows11-21h2-x64

1

Resubmissions

09-04-2024 22:11

240409-131wtaea38 8

09-04-2024 21:43

240409-1k5r2scg65 7

09-04-2024 21:18

240409-z5mxasbe59 7

06-04-2024 10:55

240406-mz7nashc59 8

06-04-2024 10:41

240406-mrjaqsgd6z 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    GalaxiaViva.exe

  • Size

    69.8MB

  • Sample

    240409-1k5r2scg65

  • MD5

    62bda6829e7b08bd8f3c5b4057fa238f

  • SHA1

    b3cadccbe3199cf72c8dd110b463137eed013e09

  • SHA256

    18ce929380ab15f9e9d23d156ff3cff56b94e33641a40379f57e7adc91130c3f

  • SHA512

    1966c014c929f8feff29f00aff837769b232890ad572b46d8056ea7b18de9b970ea8cdce0014fc2d040fc62476c1ffce222ad6b9209dfaec0bf535546de25147

  • SSDEEP

    1572864:f85PaKHmqV6kLdNjObU5LwsagSbZFgagYjhSuyDV09arU7:uPaq1VddNaAwsa3bjhHyh09aA7

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      GalaxiaViva.exe

    • Size

      69.8MB

    • MD5

      62bda6829e7b08bd8f3c5b4057fa238f

    • SHA1

      b3cadccbe3199cf72c8dd110b463137eed013e09

    • SHA256

      18ce929380ab15f9e9d23d156ff3cff56b94e33641a40379f57e7adc91130c3f

    • SHA512

      1966c014c929f8feff29f00aff837769b232890ad572b46d8056ea7b18de9b970ea8cdce0014fc2d040fc62476c1ffce222ad6b9209dfaec0bf535546de25147

    • SSDEEP

      1572864:f85PaKHmqV6kLdNjObU5LwsagSbZFgagYjhSuyDV09arU7:uPaq1VddNaAwsa3bjhHyh09aA7

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2behavioral3behavioral4

    • Target

      Installer.exe

    • Size

      147.0MB

    • MD5

      2fcb65fc8b2bc9505da8dd94033cc7ad

    • SHA1

      ff12916a1d57eb26d9e5856d91c450b155a35f65

    • SHA256

      708543f3ca34ffe8e4d33c09560d4e190fe35bd2aa7a57369291174d537ffc32

    • SHA512

      4927ede0dead3f947513add783a150245185ae1872b0f59d8159448423b33e636956e69b8278c37f62dd9a6a4ca59247f83beea4d59d1a6832ce5ce4533ed585

    • SSDEEP

      1572864:EgGRqQdeZ4K5M0PmL0g6dKXPRYGO1QwOVnMKVbmd6LpL28nHQ5OneFBlwb:OV6msmCUhN4lS

    Score
    7/10
    spywarestealer

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral5behavioral6behavioral7behavioral8

    • Target

      resources/elevate.exe

    • Size

      105KB

    • MD5

      792b92c8ad13c46f27c7ced0810694df

    • SHA1

      d8d449b92de20a57df722df46435ba4553ecc802

    • SHA256

      9b1fbf0c11c520ae714af8aa9af12cfd48503eedecd7398d8992ee94d1b4dc37

    • SHA512

      6c247254dc18ed81213a978cce2e321d6692848c64307097d2c43432a42f4f4f6d3cf22fb92610dfa8b7b16a5f1d94e9017cf64f88f2d08e79c0fe71a9121e40

    • SSDEEP

      3072:1bLnrwQoRDtdMMgSXiFJWcIgUVCfRjV/GrWl:1PrwRhte1XsE1l

    Score
    1/10
    behavioral10behavioral11behavioral12behavioral9

MITRE ATT&CK Enterprise v15

Tasks