Overview

overview

7

Static

static

1

bittorrent...er.exe

windows11-21h2-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    bittorrent_installer.exe

  • Size

    1.8MB

  • Sample

    240809-tp6rkssfln

  • MD5

    5fb08b30c00a6b2d2999edea818987c5

  • SHA1

    a9a1fac63ec1bea4c787114edcb16c4ea1cf1a35

  • SHA256

    ee9093a64aa542dfd79a21dfebfcbcba839057fd8746d7c7ef7132b630b8a919

  • SHA512

    bf73482c4aed5926022e33d34c9a7174dfb0a86160734072eb2994506b4d6bbe7df295e59e5b04cfc90ff7018040812b89eeadf5f23acc680820b3d468ca87e0

  • SSDEEP

    24576:e7FUDowAyrTVE3U5FRuI4hPRJ8+HVoF03GbtWVpoZ6+pUNB15zFA9yaK1wJTgmG:eBuZrEUtufHFtjoE0UNB1UsaK1+0mG

Score
7/10
discoveryevasionspywarestealerupx

Malware Config

Targets

    • Target

      bittorrent_installer.exe

    • Size

      1.8MB

    • MD5

      5fb08b30c00a6b2d2999edea818987c5

    • SHA1

      a9a1fac63ec1bea4c787114edcb16c4ea1cf1a35

    • SHA256

      ee9093a64aa542dfd79a21dfebfcbcba839057fd8746d7c7ef7132b630b8a919

    • SHA512

      bf73482c4aed5926022e33d34c9a7174dfb0a86160734072eb2994506b4d6bbe7df295e59e5b04cfc90ff7018040812b89eeadf5f23acc680820b3d468ca87e0

    • SSDEEP

      24576:e7FUDowAyrTVE3U5FRuI4hPRJ8+HVoF03GbtWVpoZ6+pUNB15zFA9yaK1wJTgmG:eBuZrEUtufHFtjoE0UNB1UsaK1+0mG

    Score
    7/10
    discoveryevasionspywarestealerupx

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks for any installed AV software in registry

    • Downloads MZ/PE file

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks