1c92320a74579827b3121cb143dbdf02d4734803313064cd76463216ad7d415e | Triage

Sharing

General

Target

1c92320a74579827b3121cb143dbdf02d4734803313064cd76463216ad7d415e.exe
Size

136KB
Sample

200213-ghfpnpb6sx
MD5

d270d2d8a23e82f9fbe8b81a6c3cf22e
SHA1

644409095b36a4adfcbd0357931cbb0e6d4cd124
SHA256

1c92320a74579827b3121cb143dbdf02d4734803313064cd76463216ad7d415e
SHA512

52dfc53bf534ee20c4188f2662161c056f269ead0639ce17eabe68dc3deafa2cc5f6de35258a37e0a545d7c6a364e6318e9bbf0c3b10162c9f954915cac76d1b

Score

6^/10

spyware

Malware Config

Targets

- Target
  
  1c92320a74579827b3121cb143dbdf02d4734803313064cd76463216ad7d415e.exe
- Size
  
  136KB
- MD5
  
  d270d2d8a23e82f9fbe8b81a6c3cf22e
- SHA1
  
  644409095b36a4adfcbd0357931cbb0e6d4cd124
- SHA256
  
  1c92320a74579827b3121cb143dbdf02d4734803313064cd76463216ad7d415e
- SHA512
  
  52dfc53bf534ee20c4188f2662161c056f269ead0639ce17eabe68dc3deafa2cc5f6de35258a37e0a545d7c6a364e6318e9bbf0c3b10162c9f954915cac76d1b
Score

6^/10

spyware
- Reads browser user data or profiles (possible credential harvesting)
  spyware
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2