Overview

overview

10

Static

static

1

TreeSize-Setup.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    TreeSize-Setup.exe

  • Size

    35.9MB

  • Sample

    240725-jq8bpazcpb

  • MD5

    95c7c2a862ec6d6ac7d9b63773c57b89

  • SHA1

    e24ae9d3c6483a66fd27a3e4a70c5a82b02d3e8a

  • SHA256

    41027b86a65ef71a4b89e5b82c076df1852e1e239e2df03d114a7bbb28e4c89e

  • SHA512

    84ba27713569e96cc5b3f6fb7ba554c6b44691ba13af052df6532c42f7c83f095893ba62ef2cf699bb3e852b9cdacd942dc0eac8ebb2cb756aeb39d7c0049344

  • SSDEEP

    786432:0xGiNdUw69iaIthQjXQDtqUJaRp3Ybd8X5dYcssi8v:wBH+ihhQy0GqPsIv

Score
10/10
purelogstealerdiscoverystealer

Malware Config

Targets

    • Target

      TreeSize-Setup.exe

    • Size

      35.9MB

    • MD5

      95c7c2a862ec6d6ac7d9b63773c57b89

    • SHA1

      e24ae9d3c6483a66fd27a3e4a70c5a82b02d3e8a

    • SHA256

      41027b86a65ef71a4b89e5b82c076df1852e1e239e2df03d114a7bbb28e4c89e

    • SHA512

      84ba27713569e96cc5b3f6fb7ba554c6b44691ba13af052df6532c42f7c83f095893ba62ef2cf699bb3e852b9cdacd942dc0eac8ebb2cb756aeb39d7c0049344

    • SSDEEP

      786432:0xGiNdUw69iaIthQjXQDtqUJaRp3Ybd8X5dYcssi8v:wBH+ihhQy0GqPsIv

    Score
    10/10
    purelogstealerdiscoverystealer

    • PureLog Stealer

      PureLog Stealer is an infostealer written in C#.

      stealerpurelogstealer

    • PureLog Stealer payload

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Executes dropped EXE

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks