667c78c7f3b225436a284c7339659644dc805fff4d0fad5c0b0295417d521846 | Triage

Sharing

General

Target

667C78C7F3B225436A284C7339659644DC805FFF4D0FA.exe
Size

774KB
Sample

240428-t3916acb5s
MD5

37acd629b01f1890e5ae4c53ba1ccd85
SHA1

d66a8a276509477df3bd92a9f2292d35e9fa072f
SHA256

667c78c7f3b225436a284c7339659644dc805fff4d0fad5c0b0295417d521846
SHA512

045f2b51027209a04804f4674f404f9dd97a74aa0a62e2c1fd78618fd09cbd150176aa64ae3236b12e19b4df0de2ca100901e5649646e49bc73c58d20cd1857c
SSDEEP

24576:1k70TrcVW3CNIb88WsNMhFERmSjNRheRjBX9koi:1kQTAV6RmSRRVX

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  667C78C7F3B225436A284C7339659644DC805FFF4D0FA.exe
- Size
  
  774KB
- MD5
  
  37acd629b01f1890e5ae4c53ba1ccd85
- SHA1
  
  d66a8a276509477df3bd92a9f2292d35e9fa072f
- SHA256
  
  667c78c7f3b225436a284c7339659644dc805fff4d0fad5c0b0295417d521846
- SHA512
  
  045f2b51027209a04804f4674f404f9dd97a74aa0a62e2c1fd78618fd09cbd150176aa64ae3236b12e19b4df0de2ca100901e5649646e49bc73c58d20cd1857c
- SSDEEP
  
  24576:1k70TrcVW3CNIb88WsNMhFERmSjNRheRjBX9koi:1kQTAV6RmSRRVX
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2