bbf259ce41309be3f93a.zip

General
Target

bbf259ce41309be3f93a.zip

Size

52KB

Sample

210421-q3h7my938n

Score
7 /10
MD5

6bcab2d3574fc782ffbe7b56823ba32f

SHA1

1cb040b86dc652c84b6adfb57ea9f1a73e644c43

SHA256

4058b6910fc3e0a97dca38ca0fcbc8d5dde9c6363259a3569c6e3aa8e18326d3

SHA512

a7b4b8a2692c99bbd0a6e66acf615270bcfbc6ded8f2f43e5eb8ef9789f9066afcbd2936a0457305a634debe4ed0a209cb84ab4e16091f65d9edb85b295db9de

Malware Config
Targets
Target

bbf259ce41309be3f93aa4100d6a8bf2fd84b11d884143b01046ede50b49296c.bin

MD5

d0efb223aef8dd61f0c0693aba824692

Filesize

59KB

Score
7 /10
SHA1

ff95c6dc11100478baa416db56a3c69af4aaa1d6

SHA256

bbf259ce41309be3f93aa4100d6a8bf2fd84b11d884143b01046ede50b49296c

SHA512

0bac4db18ebe73aa3dff0f47f51b0b6b54b29e70d98adf708dd29040fdc0a2d845d786aed7ee5e14ba5eab17b8ad1dfcc427b3c63c1fe4030700b5da657fb46a

Tags

Signatures

  • Reads user/profile data of local email clients

    Description

    Email clients store some user data on disk where infostealers will often target it.

    Tags

    TTPs

    Data from Local System Credentials in Files
  • Reads user/profile data of web browsers

    Description

    Infostealers often target stored browser data, which can include saved credentials etc.

    Tags

    TTPs

    Data from Local System Credentials in Files

Related Tasks

MITRE ATT&CK Matrix
Command and Control
    Credential Access
    Defense Evasion
      Discovery
        Execution
          Exfiltration
            Impact
              Initial Access
                Lateral Movement
                  Persistence
                    Privilege Escalation
                      Tasks

                      static1

                      behavioral1

                      7/10

                      behavioral2

                      7/10