dbb4fdb10597cfb189203f72e75a2f2769a6960ed1acc1baa901742a344ae52d | Triage

Sharing

General

Target

dbb4fdb10597cfb189203f72e75a2f2769a6960ed1acc1baa901742a344ae52d
Size

33KB
Sample

240428-rlv5kahh4y
MD5

3659e75ad8a2bdeef5f1d74aae41c2af
SHA1

95b2fa7bc2afbc1f412fc4285dbb6a15cc658a8a
SHA256

dbb4fdb10597cfb189203f72e75a2f2769a6960ed1acc1baa901742a344ae52d
SHA512

f19bbad48af80437f083d21cf89839bee9d30d50162df60a0d7c8205b646739332e55371f5d6c005f69681e41f00df936942c06f94f1a38c25084e438cac61e2
SSDEEP

768:/qLPcTO5RroZJ76739sBWsNscWlM3dN9N3ZjfPP:/qbSe+Zk78NR3dN5nP

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  dbb4fdb10597cfb189203f72e75a2f2769a6960ed1acc1baa901742a344ae52d
- Size
  
  33KB
- MD5
  
  3659e75ad8a2bdeef5f1d74aae41c2af
- SHA1
  
  95b2fa7bc2afbc1f412fc4285dbb6a15cc658a8a
- SHA256
  
  dbb4fdb10597cfb189203f72e75a2f2769a6960ed1acc1baa901742a344ae52d
- SHA512
  
  f19bbad48af80437f083d21cf89839bee9d30d50162df60a0d7c8205b646739332e55371f5d6c005f69681e41f00df936942c06f94f1a38c25084e438cac61e2
- SSDEEP
  
  768:/qLPcTO5RroZJ76739sBWsNscWlM3dN9N3ZjfPP:/qbSe+Zk78NR3dN5nP
Score

7^/10

spyware stealer
- Drops startup file
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2