Overview

overview

7

Static

static

7

Instalar_S...or.exe

windows10-2004-x64

7

out.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Instalar_Super_SCR_Creador.exe

  • Size

    815KB

  • Sample

    240918-2cpljawejg

  • MD5

    32ac0f958e57af131fdf4879f7f8ee67

  • SHA1

    df7e61f019b93602ce6151802f7ae5050d05330d

  • SHA256

    74f0728b9cffd3ccb0fe0e8b88c2e2fad215f6ee6593e522f33b4f134b4321df

  • SHA512

    c527d5931d7ff001e858e751ad1d83c6ae2fa2880c4e1379565376b74a1b5e447e2823a39f0acd59936cfe56afd896bd69d0cb43bd7c2793a278b0815b9fa2b5

  • SSDEEP

    12288:QiXKsUD718dw0/6cLOmDuJDup9ODPLCL5Fk5Jvue2gkdxTda0YCdFycEuktZvlJJ:HXKDyi1c4ir9k5Jvuzp3Tr+fLZdJJ

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      Instalar_Super_SCR_Creador.exe

    • Size

      815KB

    • MD5

      32ac0f958e57af131fdf4879f7f8ee67

    • SHA1

      df7e61f019b93602ce6151802f7ae5050d05330d

    • SHA256

      74f0728b9cffd3ccb0fe0e8b88c2e2fad215f6ee6593e522f33b4f134b4321df

    • SHA512

      c527d5931d7ff001e858e751ad1d83c6ae2fa2880c4e1379565376b74a1b5e447e2823a39f0acd59936cfe56afd896bd69d0cb43bd7c2793a278b0815b9fa2b5

    • SSDEEP

      12288:QiXKsUD718dw0/6cLOmDuJDup9ODPLCL5Fk5Jvue2gkdxTda0YCdFycEuktZvlJJ:HXKDyi1c4ir9k5Jvuzp3Tr+fLZdJJ

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1

    • Target

      out.upx

    • Size

      139KB

    • MD5

      dbe1330287eb4b79f685cdcdfd385e3e

    • SHA1

      953ca9f8a829f52db6a3980e8c5596304db83362

    • SHA256

      097bda3a1b72164cc2ca61763f3b5a2ca590f214be3f51de1419d72d006ad3ac

    • SHA512

      8fd459bffb39273f419953700826d5fcb6ab666ccfe074d5023a377a76bcb935f2416845c2486a448b8328581c8b73ee46cd27cf957436464ca7e7a3400593c7

    • SSDEEP

      3072:WKj4FSD7/kzixNz6d/KA5INtTEP7BBa6nKDXZR4:WKd//kzixNz6d/KASTGNnsr

    Score
    3/10
    discovery
    behavioral2

MITRE ATT&CK Enterprise v15

Tasks