30ae441d43415871deca6db3ced23257df49de89126cd0756ae84f7eb02d3828 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

free_spoti...er.exe

windows10-2004-x64

7

Sharing

General

Target

free_spotify_music_downloader.exe
Size

41.1MB
Sample

241227-xfsp5syjal
MD5

cbedbf08f6bee26c4c0d150feb411ad6
SHA1

d203eb2f65001088aa99d1c1763f92fc0ff4e6e0
SHA256

30ae441d43415871deca6db3ced23257df49de89126cd0756ae84f7eb02d3828
SHA512

0d2eb43743691cace8e60b6488a58738e407a67acd5aa256f8a9198d8d7cf8af8283f06392d0a8967bbee5a75815b56d911bee7f903d1f698f71b0e4ff2dc6c6
SSDEEP

786432:bNdDjAlYjS0OG5gY4z7XpBp55sIYO4UTpLumdeDiKsn9a11MsSMi:bNdHFSBY4/XzpDupU1j6iA1vi

Score

7^/10

discovery persistence privilege_escalation pyinstaller

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

free_spotify_music_downloader.exe

Resource

win10v2004-20241007-es

discovery persistence privilege_escalation pyinstaller

windows10-2004-x64

23 signatures

900 seconds

Malware Config

Targets

- Target
  
  free_spotify_music_downloader.exe
- Size
  
  41.1MB
- MD5
  
  cbedbf08f6bee26c4c0d150feb411ad6
- SHA1
  
  d203eb2f65001088aa99d1c1763f92fc0ff4e6e0
- SHA256
  
  30ae441d43415871deca6db3ced23257df49de89126cd0756ae84f7eb02d3828
- SHA512
  
  0d2eb43743691cace8e60b6488a58738e407a67acd5aa256f8a9198d8d7cf8af8283f06392d0a8967bbee5a75815b56d911bee7f903d1f698f71b0e4ff2dc6c6
- SSDEEP
  
  786432:bNdDjAlYjS0OG5gY4z7XpBp55sIYO4UTpLumdeDiKsn9a11MsSMi:bNdHFSBY4/XzpDupU1j6iA1vi
Score

7^/10

discovery persistence privilege_escalation pyinstaller
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalationpyinstaller

© 2018-2024

Terms | Privacy