Overview

overview

10

Static

static

10

SpotifyChe....2.exe

windows7-x64

7

SpotifyChe....2.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SpotifyCheckerBruteAcTeamV2.2.exe

  • Size

    6.9MB

  • Sample

    250207-pd732s1ndr

  • MD5

    272a147114b9bf4e2fe5bcbe14acfeab

  • SHA1

    82d26a1c052539140783e85a8b818450028d1b5d

  • SHA256

    b25c774cf5a5f89cbeb9beb6759e1ed696bf345894512ded17ccd7ab5a9128a7

  • SHA512

    829d8af5cc758d3fe13737ca3c7f749669b3c2ddb0d602b7aa8e2d1ba657462d16315e826886b4aaa10e1f04dfbed47ccf6af5a38135140932499246aeb7f603

  • SSDEEP

    98304:X7DjWM8JEE1F6famaHl3Ne4i3Tf2PkOpfW9hZMMoVmkzhxIdfXeRiYRJJcGhEIFS:X70wCeNTfm/pf+xk4dWRimrbW3jmyR

Score
10/10
blankgrabberdiscoveryexecutionupx

Malware Config

Targets

    • Target

      SpotifyCheckerBruteAcTeamV2.2.exe

    • Size

      6.9MB

    • MD5

      272a147114b9bf4e2fe5bcbe14acfeab

    • SHA1

      82d26a1c052539140783e85a8b818450028d1b5d

    • SHA256

      b25c774cf5a5f89cbeb9beb6759e1ed696bf345894512ded17ccd7ab5a9128a7

    • SHA512

      829d8af5cc758d3fe13737ca3c7f749669b3c2ddb0d602b7aa8e2d1ba657462d16315e826886b4aaa10e1f04dfbed47ccf6af5a38135140932499246aeb7f603

    • SSDEEP

      98304:X7DjWM8JEE1F6famaHl3Ne4i3Tf2PkOpfW9hZMMoVmkzhxIdfXeRiYRJJcGhEIFS:X70wCeNTfm/pf+xk4dWRimrbW3jmyR

    Score
    8/10
    upxdiscoveryexecution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

      execution

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Enumerates processes with tasklist

      discovery

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks