Overview

overview

8

Static

static

3

upload.exe

windows10-1703-x64

8

Resubmissions

29/06/2024, 14:10

240629-rgtqyasbpl 8

29/06/2024, 14:06

240629-redxpsyfrg 8

Sharing

Copy URL Twitter E-mail

General

  • Target

    upload.exe

  • Size

    9.7MB

  • Sample

    240629-rgtqyasbpl

  • MD5

    72c167a88a70b450a9af74e0560ed46b

  • SHA1

    f66addfe03c33382b8b108c3c750f6b434dc5f07

  • SHA256

    7f74df661dc0c3436723cae80c9c47fe3e52f9f810d48c785c214ccaa37d658d

  • SHA512

    0e15f03d0f853908da046842a3532a7f81dc1eaa15b7e4d1cdb5794c30361e952265bcb3dbac531c12898e17e5e488cf6965b78877c4e8db347df2b98bebd3b5

  • SSDEEP

    196608:biuAays9cA2AV2QsyH3zEGL2Vmd6+DvnNgwQ+dtLZ7k+OZmjGgo0:dfTkOnz3L2Vmd6mvNjd7Q

Score
8/10
evasionpyinstallerspywarestealer

Malware Config

Targets

    • Target

      upload.exe

    • Size

      9.7MB

    • MD5

      72c167a88a70b450a9af74e0560ed46b

    • SHA1

      f66addfe03c33382b8b108c3c750f6b434dc5f07

    • SHA256

      7f74df661dc0c3436723cae80c9c47fe3e52f9f810d48c785c214ccaa37d658d

    • SHA512

      0e15f03d0f853908da046842a3532a7f81dc1eaa15b7e4d1cdb5794c30361e952265bcb3dbac531c12898e17e5e488cf6965b78877c4e8db347df2b98bebd3b5

    • SSDEEP

      196608:biuAays9cA2AV2QsyH3zEGL2Vmd6+DvnNgwQ+dtLZ7k+OZmjGgo0:dfTkOnz3L2Vmd6mvNjd7Q

    Score
    8/10
    evasionspywarestealer

    • Disables Task Manager via registry modification

      evasion

    • Drops startup file

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops desktop.ini file(s)

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks