c375a4f492e40f59eec61112d4d1df0772bdc3b56760866ac50eaa839063afd0 | Triage

Analysis

max time kernel
122s
max time network
122s
platform
windows10_x64
resource
win10-en-20211014
submitted
09-11-2021 10:45

Sharing

Report Analysis Logs

General

Target

c375a4f492e40f59eec61112d4d1df0772bdc3b56760866ac50eaa839063afd0.exe
Size

24KB
MD5

6709af1ed3fd382ef8b6a7e7d5ebea64
SHA1

3fbc26a32e22d104922ea1c170ef89e3b4ef1c44
SHA256

c375a4f492e40f59eec61112d4d1df0772bdc3b56760866ac50eaa839063afd0
SHA512

3ac4bd6a7a7166e137578f98bb8cb7d749962afb8e4f2115416309b1089939f491566ecff58eda37249f83d759f5cc3cce0bbce1e3cf472488940a5a5d1aa6f8

Score

7^/10

spyware stealer

Malware Config

Signatures

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials in Files
T1081

C:\Users\Admin\AppData\Local\Temp\c375a4f492e40f59eec61112d4d1df0772bdc3b56760866ac50eaa839063afd0.exe
"C:\Users\Admin\AppData\Local\Temp\c375a4f492e40f59eec61112d4d1df0772bdc3b56760866ac50eaa839063afd0.exe"
1⤵
PID:2720

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2720-115-0x0000000002970000-0x0000000002972000-memory.dmp

Filesize
8KB

Download