a59ace8226d8bcb7d6b9b6cf1681d2f07c5884ba5703cd5dee3b3eed76ad9841 | Triage

Submit
Reports

Overview

overview

7

Static

static

a59ace8226...41.exe

windows7_x64

7

a59ace8226...41.exe

windows10_x64

7

Analysis

max time kernel
105s
max time network
39s
platform
windows7_x64
resource
win7-en-20210920
submitted
26-09-2021 13:17

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a59ace8226d8bcb7d6b9b6cf1681d2f07c5884ba5703cd5dee3b3eed76ad9841.exe

Resource

win7-en-20210920

spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

a59ace8226d8bcb7d6b9b6cf1681d2f07c5884ba5703cd5dee3b3eed76ad9841.exe

Resource

win10v20210408

spyware stealer

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

a59ace8226d8bcb7d6b9b6cf1681d2f07c5884ba5703cd5dee3b3eed76ad9841.exe
Size

102KB
MD5

85179e36fffd67b0302bbd626a8fda6a
SHA1

e344db481d2a4bba886efb38f086b37a6f97cac3
SHA256

a59ace8226d8bcb7d6b9b6cf1681d2f07c5884ba5703cd5dee3b3eed76ad9841
SHA512

f1105896f6c654468b5877e559fc35513fb998b2edc403c09b240c8a50f06cc51c9106416d35786cc751e069e390637da977ef6c72de05c9a211c61cca2e5f71

Score

7^/10

spyware stealer

Malware Config

Signatures

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials in Files
T1081

Processes

C:\Users\Admin\AppData\Local\Temp\a59ace8226d8bcb7d6b9b6cf1681d2f07c5884ba5703cd5dee3b3eed76ad9841.exe
"C:\Users\Admin\AppData\Local\Temp\a59ace8226d8bcb7d6b9b6cf1681d2f07c5884ba5703cd5dee3b3eed76ad9841.exe"
1⤵
PID:1044

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy