f5773e4517ef94e87022bae134a0298f6f9e688561c41e0ef5d4dd75d8defd51 | Triage

Sharing

General

Target

784775471.exe
Size

408KB
Sample

200708-djldj37mca
MD5

82dd311b67db9b4bfd80b0477d84f493
SHA1

de87fbab7bb506fd95f11de12a124a70d68b5bd4
SHA256

f5773e4517ef94e87022bae134a0298f6f9e688561c41e0ef5d4dd75d8defd51
SHA512

864f2f95703d7123983f65093b4f7bc0fc89a1a2c8cec55f4faadb906c0a084e460eb03ab2242cc56adec700611fc6ea21db7bd9dfcd0ad08eec784f7661f753

Score

10^/10

spyware

Malware Config

Extracted

Credentials

Protocol: smtp
Host:
smtp.ionos.fr
Port:
587
Username:
boudes@sagesse.fr
Password:
8p<@MrL3

Targets

- Target
  
  784775471.exe
- Size
  
  408KB
- MD5
  
  82dd311b67db9b4bfd80b0477d84f493
- SHA1
  
  de87fbab7bb506fd95f11de12a124a70d68b5bd4
- SHA256
  
  f5773e4517ef94e87022bae134a0298f6f9e688561c41e0ef5d4dd75d8defd51
- SHA512
  
  864f2f95703d7123983f65093b4f7bc0fc89a1a2c8cec55f4faadb906c0a084e460eb03ab2242cc56adec700611fc6ea21db7bd9dfcd0ad08eec784f7661f753
Score

10^/10

spyware
- Drops startup file
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2