93082becf838b94356514a5f5ae205ae6928540a9cef12722fe52cabb9a0a33d | Triage

Sharing

General

Target

gwq6YRD8.exe
Size

993KB
Sample

211001-mevs1abeem
MD5

d3a501cec812ab3556e256429e2387a5
SHA1

273924b22cc3ae8172ec4e13d6a4d01d9ea5dd9f
SHA256

93082becf838b94356514a5f5ae205ae6928540a9cef12722fe52cabb9a0a33d
SHA512

18598996a2d0d176256b490737eca73be461f39a08e555d010658177329912e7ff43e0dfe43c36196386fa3c159a549e29df148f7f250b59e4197ab6cffbd139

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  gwq6YRD8.exe
- Size
  
  993KB
- MD5
  
  d3a501cec812ab3556e256429e2387a5
- SHA1
  
  273924b22cc3ae8172ec4e13d6a4d01d9ea5dd9f
- SHA256
  
  93082becf838b94356514a5f5ae205ae6928540a9cef12722fe52cabb9a0a33d
- SHA512
  
  18598996a2d0d176256b490737eca73be461f39a08e555d010658177329912e7ff43e0dfe43c36196386fa3c159a549e29df148f7f250b59e4197ab6cffbd139
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2