pandastealer | f3ccd6ebcd9c34379b314386bb05060e17f8fffd4795081b46830e3832590900 | Triage

Sharing

General

Target

Program.rar
Size

475KB
Sample

210605-s892yehs22
MD5

4989d0291a2d8d12e2d1cf3fc5649450
SHA1

04ea962c843ef8d10782fae8cf8476aa61646e62
SHA256

f3ccd6ebcd9c34379b314386bb05060e17f8fffd4795081b46830e3832590900
SHA512

6dfb3b558d3ef5779a0db8c57b1a7d16d82f1ac1016a6aac0040716b7eb634749e6c3bbc494621a6df6d22e3efe3e22fb952e42833ee38c89d82b4b04c1fca72

Score

10^/10

pandastealer spyware stealer

Malware Config

Targets

- Target
  
  Install.sfx.exe
- Size
  
  605KB
- MD5
  
  c9f95502be073fbef379c92edebb8644
- SHA1
  
  3e3ad24013f3d3e3d1cb81ae408804f32da44bf9
- SHA256
  
  500e8c5cbd452c132e796bf19397c831730c34496f3d07e9b88258fc4ca07746
- SHA512
  
  51c7cc0d4f12d12bc07e165335f005c39546b6f03cdc303dac304926e4e8eb03226ca6bda0e5813751de8fd4c4c9c45af54af55222b5505ebdd2be6205242b35
Score

10^/10

pandastealer spyware stealer
- Panda Stealer Payload
- PandaStealer
  Panda Stealer is a fork of CollectorProject Stealer written in C++.
  stealer pandastealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2
- Target
  
  Автономная Установка.exe
- Size
  
  6KB
- MD5
  
  6ea57e7f9246d44f91fd33c08a68c4a5
- SHA1
  
  8c0998c1c3b4fd419c24d9f951e8a7cf0a09b6cf
- SHA256
  
  9db749b9a3a2790b136548a7fdbada5e45428db659a95a05e13691fbb467e605
- SHA512
  
  d81902bddb500417cef1a1dbde64fbc060a66898e8b11de8a38acdb95b31058c8c2092d0a6d7d4c3a981f701e7fce4ef077b6d61bc59bd2b52ae4b8a47e3151f
Score

8^/10
- Executes dropped EXE
- Deletes itself
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

pandastealerspywarestealer

behavioral2

pandastealerspywarestealer

behavioral3

behavioral4