Overview

overview

10

Static

static

3

e57013c5e4...fN.exe

windows7-x64

10

e57013c5e4...fN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e57013c5e4813270b4ca9288512141c2552d177a4969edd1ddf78b1084fd5fbfN

  • Size

    171KB

  • Sample

    240919-ghde8stdmb

  • MD5

    e4bab18853c1124af84cb34830a25940

  • SHA1

    077cc65709ffe3b561ab773e1d3a6703e40ab8ba

  • SHA256

    e57013c5e4813270b4ca9288512141c2552d177a4969edd1ddf78b1084fd5fbf

  • SHA512

    3b83848337547eb2394fa8024c84a297384f5e7d95d3e10a91d0269f770c27991eb106fb7496a8f5324ad26cc1dc269e662d225440006449cc97088e7824433e

  • SSDEEP

    3072:rZcFmpOW3uUMKH83ECl9Zsows7T+gVTQ4e+9Ec0Daq56UfEvnbi:ln3NM2jC2ows7iuTJe+9E/ai61b

Score
10/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      e57013c5e4813270b4ca9288512141c2552d177a4969edd1ddf78b1084fd5fbfN

    • Size

      171KB

    • MD5

      e4bab18853c1124af84cb34830a25940

    • SHA1

      077cc65709ffe3b561ab773e1d3a6703e40ab8ba

    • SHA256

      e57013c5e4813270b4ca9288512141c2552d177a4969edd1ddf78b1084fd5fbf

    • SHA512

      3b83848337547eb2394fa8024c84a297384f5e7d95d3e10a91d0269f770c27991eb106fb7496a8f5324ad26cc1dc269e662d225440006449cc97088e7824433e

    • SSDEEP

      3072:rZcFmpOW3uUMKH83ECl9Zsows7T+gVTQ4e+9Ec0Daq56UfEvnbi:ln3NM2jC2ows7iuTJe+9E/ai61b

    Score
    10/10
    discoverypersistencespywarestealerupx

    • Modifies WinLogon for persistence

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks