de9d1121886055c847d58af16f31521e699b29c1d3d34e18222c489b2a11e33c | Triage

Submit
Reports

Overview

overview

8

Static

static

3

capa.exe

windows10_x64

8

Sharing

General

Target

saphire-capa.zip
Size

23.6MB
Sample

210716-3b98gzw1fe
MD5

297d1d475b7ae429fdb6726ce68de61e
SHA1

843a3665d989d061690f598f25be1719f2352465
SHA256

de9d1121886055c847d58af16f31521e699b29c1d3d34e18222c489b2a11e33c
SHA512

16ce514dc609836e7f3456ed4aecabb9ecb61ce324c148f72f4bdb956e99bd1659354f57dbfb51ab4a9765fe6a8344505c23062c0de06bf38947e760ba34ac03

Score

8^/10

pyinstaller spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

capa.exe

Resource

win10v20210408

spyware stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  capa.exe
- Size
  
  17.0MB
- MD5
  
  4051dc738e3292a31ff4529009af59d0
- SHA1
  
  7058f538887a0b87a3b749f55fb36cf4be2cfdf8
- SHA256
  
  83e2c4e92c50812a4abe6eb1c586a0db0eac88ad700a0d85cc389205c6849616
- SHA512
  
  087fbb2ce4849472dcee6756d37e2eca2c181b6d18c1280c7fde20f576dbe90cad47b0b36d299a0d9c2b2bb9af545695fb5bd3f2b69b34c3ae275b1efae7025e
Score

8^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy