Overview

overview

8

Static

static

1

installer.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    installer (2).zip

  • Size

    23KB

  • Sample

    240421-pt7gfsbf35

  • MD5

    1bfd16a59c45adb7c279511d6f142753

  • SHA1

    940d98f1e39def4db10154c6ff86efba3a8a4e54

  • SHA256

    085dc39df7763261a35d9846bcea1230b6dbce6f17b726a45e1dbae142fe0a58

  • SHA512

    f4e0bec44bb7d0f033b6777b6be82fdedd225af0a76c36c07598fa16121729641fb9c5c8fd283c202952d53c43e568786964ab1fe4ac9f0b50dda1de09a57361

  • SSDEEP

    384:lajTif1lFKBUjad39ISIar+uo87oVx19nPvC3nzVUpHN2vsTKVn1SrCEInj:gSKBUjEfc59nonzWpHkv8WYCVj

Score
8/10
spywarestealerupx

Malware Config

Targets

    • Target

      installer.exe

    • Size

      43KB

    • MD5

      d406ce5200488ab3fb725bbd16324864

    • SHA1

      f7f619307ec9b463abfc7ede001274d12cdc447e

    • SHA256

      28050c06cb9377a1f54773370b24723e0d2849b5b71899bed40b9da7837f2974

    • SHA512

      461822da36db093cae46ab3b1a5fa34617f9fb37bec97c38c33efd134c61df75fecc3192442005645c30c411d6e0eedff6d130c053d80ad557064df12c89a883

    • SSDEEP

      768:XIeRwUuo7jHzx2ET1RVfyCSUz2rx2ET1RVfyCSUzcA20I2BDWNAMxkEQp:1RTuCxH1RAO2rxH1RAOcAsCWFx6

    Score
    8/10
    spywarestealerupx

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks