Overview

overview

7

Static

static

7

encryptfil...ng.exe

windows7-x64

7

encryptfil...ng.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    69f2a9754bebe40b0275eeebcfca7951_JaffaCakes118

  • Size

    40KB

  • Sample

    240523-glbe2sff82

  • MD5

    69f2a9754bebe40b0275eeebcfca7951

  • SHA1

    5d544896597c2af07fd1c2680ff521eafd5d0e6c

  • SHA256

    864f0e1ce15a180bf911e38bf7180320b0ff3d1569563595401b3d0f5c7c9470

  • SHA512

    34ec4e559476ca51ddc0fd096549a9d1353286b96e3a2e21d5ba57ee3b7fae04914844b4373bfe02233452af5a60c956b1e158c7fcb139877e3046ee7b4f1d2c

  • SSDEEP

    768:Xau163Osq8Z7Lp0x3YfAIy3tE+SnobzoAE5rcPPaNaqhFXCqxs2mXo9:H168Wp09xV5Es0DcKNDhl9f

Score
7/10
spywarestealerupx

Malware Config

Targets

    • Target

      encryptfilesworking.exe

    • Size

      45KB

    • MD5

      61ca945bcf93dcd5d664f882a95f5e42

    • SHA1

      bd445e68f177f69f638ed16e5988f1b302b5306d

    • SHA256

      19432d64303f6ee4847ee9fcdb39f05051fa078014e334ddcb74ec8e51ebd325

    • SHA512

      1ef3b80ee44a9af1e887537de783a68c4ecc6c9bc45df080749b1c223fafd439db7cd976f5ac2d3346e91ef4cf5550aab21b8bac89c2b9f7cdabe58c90dd72c6

    • SSDEEP

      768:Up+cLlu7R6P5Uxu5zggynr+3xhQ0Y/ZKs+W2DKNczRG21q0:Ujlu7R6hUYGynQ0yws+eaA200

    Score
    7/10
    spywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks