ab0c03c52d53f2e14580523d4c54d4214f34fd7f604ad93e302fd16bcba1c79b | Triage

Sharing

General

Target

ab0c03c52d53f2e14580523d4c54d4214f34fd7f604ad93e302fd16bcba1c79b
Size

1.3MB
Sample

211021-l6s8taabd7
MD5

f567a0c29154f7c52e69f14a1225f391
SHA1

2909d22adf3984a0577b8cbc5e48e13d47c4a0c9
SHA256

ab0c03c52d53f2e14580523d4c54d4214f34fd7f604ad93e302fd16bcba1c79b
SHA512

686c45ad9e34242a89d03c4bab38bba67b2d0330394f3e77bf8710a98171cbcfb5fd2bbc7fee50dad6ac0395a598fe43a375b0d890cc0cb9fa859faae90f3d10

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  ab0c03c52d53f2e14580523d4c54d4214f34fd7f604ad93e302fd16bcba1c79b
- Size
  
  1.3MB
- MD5
  
  f567a0c29154f7c52e69f14a1225f391
- SHA1
  
  2909d22adf3984a0577b8cbc5e48e13d47c4a0c9
- SHA256
  
  ab0c03c52d53f2e14580523d4c54d4214f34fd7f604ad93e302fd16bcba1c79b
- SHA512
  
  686c45ad9e34242a89d03c4bab38bba67b2d0330394f3e77bf8710a98171cbcfb5fd2bbc7fee50dad6ac0395a598fe43a375b0d890cc0cb9fa859faae90f3d10
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1