Overview

overview

10

Static

static

3

UnityLibManager.exe

windows10-1703-x64

10

Resubmissions

01-06-2024 21:48

240601-1nsa5age89 10

01-06-2024 21:40

240601-1jd8psff6w 10

01-06-2024 21:33

240601-1elf8agc72 10

01-06-2024 21:10

240601-zz1wzafa7w 10

01-06-2024 20:55

240601-zqex5sef9z 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    UnityLibManager.exe

  • Size

    90.8MB

  • Sample

    240601-1nsa5age89

  • MD5

    114fd33387b4888d2d62690655cd6dae

  • SHA1

    c9cd2231dd18d0bed606eff81c1c20ff3bdd8bff

  • SHA256

    c35d052840a11e04e79b507fbc5c6e086bc9101ab602ac745d9ed343f2cee488

  • SHA512

    837aaeac5d3fbdf382c8dd5433c8035685a0f1dae1dc88e09e960b933ead20c9cbe6815bd9ae7542d4143242c49fffd10c0423a1090e1fb7a6c9d3985f90d789

  • SSDEEP

    1572864:IUmwDpaW0RuEy0dEkqkktU063DpeyJ7UiGGYYWKq//TjlTkRBoly:FdD6c3pkktk3Dw07Ui59WKY/FTkQly

Score
10/10
epsilonspywarestealer

Malware Config

Targets

    • Target

      UnityLibManager.exe

    • Size

      90.8MB

    • MD5

      114fd33387b4888d2d62690655cd6dae

    • SHA1

      c9cd2231dd18d0bed606eff81c1c20ff3bdd8bff

    • SHA256

      c35d052840a11e04e79b507fbc5c6e086bc9101ab602ac745d9ed343f2cee488

    • SHA512

      837aaeac5d3fbdf382c8dd5433c8035685a0f1dae1dc88e09e960b933ead20c9cbe6815bd9ae7542d4143242c49fffd10c0423a1090e1fb7a6c9d3985f90d789

    • SSDEEP

      1572864:IUmwDpaW0RuEy0dEkqkktU063DpeyJ7UiGGYYWKq//TjlTkRBoly:FdD6c3pkktk3Dw07Ui59WKY/FTkQly

    Score
    10/10
    epsilonspywarestealer

    • Epsilon Stealer

      Information stealer.

      stealerepsilon

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks