97c0c04ae83b9599b78f61d809cfb2428984b25a79d2d986dfdbad6858101af9 | Triage

Sharing

General

Target

97c0c04ae83b9599b78f61d809cfb2428984b25a79d2d986dfdbad6858101af9
Size

1.3MB
Sample

211021-l5w83sbaaj
MD5

6d6147dc459a34905e68396a8c554525
SHA1

f9c5ae56737c3b4e0d0157f8755f06b091606984
SHA256

97c0c04ae83b9599b78f61d809cfb2428984b25a79d2d986dfdbad6858101af9
SHA512

e7827ecef737772f877891dd048a53e5a4ce3419c414ffb3f6fbf4676c70475130606af5ac5f5fc66e80b63fd013276d774dc8472f9ba49081baeabd97c99f24

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  97c0c04ae83b9599b78f61d809cfb2428984b25a79d2d986dfdbad6858101af9
- Size
  
  1.3MB
- MD5
  
  6d6147dc459a34905e68396a8c554525
- SHA1
  
  f9c5ae56737c3b4e0d0157f8755f06b091606984
- SHA256
  
  97c0c04ae83b9599b78f61d809cfb2428984b25a79d2d986dfdbad6858101af9
- SHA512
  
  e7827ecef737772f877891dd048a53e5a4ce3419c414ffb3f6fbf4676c70475130606af5ac5f5fc66e80b63fd013276d774dc8472f9ba49081baeabd97c99f24
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1