Overview

overview

7

Static

static

1

d08f2dae43...81.exe

windows7-x64

7

d08f2dae43...81.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    d08f2dae436ff4721e146a253bf7e69d4b448ebf24d129668a85f40fc5e46981.exe

  • Size

    23.5MB

  • Sample

    240520-kqzvzsch31

  • MD5

    e315cbef0e1aa0ef96c7968f1fa15f24

  • SHA1

    01abe928a39e35899e7440fe322debb99e2ec39b

  • SHA256

    d08f2dae436ff4721e146a253bf7e69d4b448ebf24d129668a85f40fc5e46981

  • SHA512

    0cc03a590da0c149f22cff97239fc4404a15327850103f75c8e2e8643ff1f39ac68ceeae28360632cdb52a67189174679742ef0ad1b6e4d74fadef1a394aee6b

  • SSDEEP

    393216:Ja92Yg5sgyF5L1V8diurEUWjbEnBSVkRIrY87oALK5WE1PcZYE9buK+xq:M9SO7RFdbqzcY87o35WRYEEK+8

Score
7/10
spywarestealerupx

Malware Config

Targets

    • Target

      d08f2dae436ff4721e146a253bf7e69d4b448ebf24d129668a85f40fc5e46981.exe

    • Size

      23.5MB

    • MD5

      e315cbef0e1aa0ef96c7968f1fa15f24

    • SHA1

      01abe928a39e35899e7440fe322debb99e2ec39b

    • SHA256

      d08f2dae436ff4721e146a253bf7e69d4b448ebf24d129668a85f40fc5e46981

    • SHA512

      0cc03a590da0c149f22cff97239fc4404a15327850103f75c8e2e8643ff1f39ac68ceeae28360632cdb52a67189174679742ef0ad1b6e4d74fadef1a394aee6b

    • SSDEEP

      393216:Ja92Yg5sgyF5L1V8diurEUWjbEnBSVkRIrY87oALK5WE1PcZYE9buK+xq:M9SO7RFdbqzcY87o35WRYEEK+8

    Score
    7/10
    upxspywarestealer

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks