4058b6910fc3e0a97dca38ca0fcbc8d5dde9c6363259a3569c6e3aa8e18326d3 | Triage

Sharing

General

Target

bbf259ce41309be3f93a.zip
Size

52KB
Sample

210421-q3h7my938n
MD5

6bcab2d3574fc782ffbe7b56823ba32f
SHA1

1cb040b86dc652c84b6adfb57ea9f1a73e644c43
SHA256

4058b6910fc3e0a97dca38ca0fcbc8d5dde9c6363259a3569c6e3aa8e18326d3
SHA512

a7b4b8a2692c99bbd0a6e66acf615270bcfbc6ded8f2f43e5eb8ef9789f9066afcbd2936a0457305a634debe4ed0a209cb84ab4e16091f65d9edb85b295db9de

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  bbf259ce41309be3f93aa4100d6a8bf2fd84b11d884143b01046ede50b49296c.bin
- Size
  
  59KB
- MD5
  
  d0efb223aef8dd61f0c0693aba824692
- SHA1
  
  ff95c6dc11100478baa416db56a3c69af4aaa1d6
- SHA256
  
  bbf259ce41309be3f93aa4100d6a8bf2fd84b11d884143b01046ede50b49296c
- SHA512
  
  0bac4db18ebe73aa3dff0f47f51b0b6b54b29e70d98adf708dd29040fdc0a2d845d786aed7ee5e14ba5eab17b8ad1dfcc427b3c63c1fe4030700b5da657fb46a
Score

7^/10

spyware stealer
- Reads user/profile data of local email clients
  Email clients store some user data on disk where infostealers will often target it.
  spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2