3d05fee7a89dfce1ad029562fa7b84346bce12d932214cde9b26f266d53ce49c | Triage

Submit
Reports

Overview

overview

8

Static

static

2d2f33da03...ca.exe

windows7_x64

8

2d2f33da03...ca.exe

windows10_x64

8

Sharing

General

Target

2d2f33da036cf7945401ec14ae9ff6ca
Size

568KB
Sample

210610-cpww8qdfa2
MD5

2d2f33da036cf7945401ec14ae9ff6ca
SHA1

411a5706daf68e47dd828af8c2616d67420b7a94
SHA256

3d05fee7a89dfce1ad029562fa7b84346bce12d932214cde9b26f266d53ce49c
SHA512

77ef687b29f74735eb652277cbc16b646cd0c14e0b2290eb05a9b5b9556b5f41b0a3c6126dee5be5f53485a35d81d454dac9ba5fe3322378ab3b9f061652feb0

Score

8^/10

spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

2d2f33da036cf7945401ec14ae9ff6ca.exe

Resource

win7v20210410

spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

2d2f33da036cf7945401ec14ae9ff6ca.exe

Resource

win10v20210408

spyware stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  2d2f33da036cf7945401ec14ae9ff6ca
- Size
  
  568KB
- MD5
  
  2d2f33da036cf7945401ec14ae9ff6ca
- SHA1
  
  411a5706daf68e47dd828af8c2616d67420b7a94
- SHA256
  
  3d05fee7a89dfce1ad029562fa7b84346bce12d932214cde9b26f266d53ce49c
- SHA512
  
  77ef687b29f74735eb652277cbc16b646cd0c14e0b2290eb05a9b5b9556b5f41b0a3c6126dee5be5f53485a35d81d454dac9ba5fe3322378ab3b9f061652feb0
Score

8^/10

spyware stealer
- Drops file in Drivers directory
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy