f5773e4517ef94e87022bae134a0298f6f9e688561c41e0ef5d4dd75d8defd51 | Triage

Sharing

General

Target

784775471.exe
Size

408KB
Sample

200708-djldj37mca
MD5

82dd311b67db9b4bfd80b0477d84f493
SHA1

de87fbab7bb506fd95f11de12a124a70d68b5bd4
SHA256

f5773e4517ef94e87022bae134a0298f6f9e688561c41e0ef5d4dd75d8defd51
SHA512

864f2f95703d7123983f65093b4f7bc0fc89a1a2c8cec55f4faadb906c0a084e460eb03ab2242cc56adec700611fc6ea21db7bd9dfcd0ad08eec784f7661f753

Score

10^/10

spyware

Malware Config

Extracted

Credentials

Protocol: smtp
Host:
smtp.ionos.fr
Port:
587
Username:
[email protected]
Password:
8p<@MrL3

Targets

- Target
  
  784775471.exe
- Size
  
  408KB
- MD5
  
  82dd311b67db9b4bfd80b0477d84f493
- SHA1
  
  de87fbab7bb506fd95f11de12a124a70d68b5bd4
- SHA256
  
  f5773e4517ef94e87022bae134a0298f6f9e688561c41e0ef5d4dd75d8defd51
- SHA512
  
  864f2f95703d7123983f65093b4f7bc0fc89a1a2c8cec55f4faadb906c0a084e460eb03ab2242cc56adec700611fc6ea21db7bd9dfcd0ad08eec784f7661f753
Score

10^/10

spyware
- Drops startup file
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2