pandastealer | 70b80a1a24d526e456893f0185550c15c3d914deaf8ebaa02d8817a15aa5bf80 | Triage

Sharing

General

Target

ForceNitro.exe
Size

762KB
Sample

210624-qbwcpjfqhx
MD5

6abff90b8cb80533bca9eb040ed698da
SHA1

ae2e389320bec602965a5f12c13e595df870ac0f
SHA256

70b80a1a24d526e456893f0185550c15c3d914deaf8ebaa02d8817a15aa5bf80
SHA512

086e4c1eb5a32ae116ffeaf28995cf4e660460fec758c1c4708d0df30413b774924e863381b6a46125c09a82570fbde933f24cac8a0691751998eb075fff1813

Score

10^/10

pandastealer spyware stealer

Malware Config

Targets

- Target
  
  ForceNitro.exe
- Size
  
  762KB
- MD5
  
  6abff90b8cb80533bca9eb040ed698da
- SHA1
  
  ae2e389320bec602965a5f12c13e595df870ac0f
- SHA256
  
  70b80a1a24d526e456893f0185550c15c3d914deaf8ebaa02d8817a15aa5bf80
- SHA512
  
  086e4c1eb5a32ae116ffeaf28995cf4e660460fec758c1c4708d0df30413b774924e863381b6a46125c09a82570fbde933f24cac8a0691751998eb075fff1813
Score

10^/10

pandastealer spyware stealer
- PandaStealer
  Panda Stealer is a fork of CollectorProject Stealer written in C++.
  stealer pandastealer
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

pandastealerspywarestealer

behavioral2

pandastealerspywarestealer