d56f880cb8c35e66750faa6ae9284f0eb2383cec287e8cef4f85122fe90d4305 | Triage

Sharing

General

Target

07dd723a06bb89dc1bdce3cc56f1cf20
Size

104KB
Sample

220114-wn9syshfe7
MD5

07dd723a06bb89dc1bdce3cc56f1cf20
SHA1

d36a56e3aa33c602cbb405dc6dd7425e17cf4672
SHA256

d56f880cb8c35e66750faa6ae9284f0eb2383cec287e8cef4f85122fe90d4305
SHA512

0d031e01c6f19357db61df8801971de597ad50a8a3822232f97b186aada2d7f2e9758d5d6d120b510f8e5eef61cb08020c5d308094a3ccee9364b9c51e8d60ed

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  07dd723a06bb89dc1bdce3cc56f1cf20
- Size
  
  104KB
- MD5
  
  07dd723a06bb89dc1bdce3cc56f1cf20
- SHA1
  
  d36a56e3aa33c602cbb405dc6dd7425e17cf4672
- SHA256
  
  d56f880cb8c35e66750faa6ae9284f0eb2383cec287e8cef4f85122fe90d4305
- SHA512
  
  0d031e01c6f19357db61df8801971de597ad50a8a3822232f97b186aada2d7f2e9758d5d6d120b510f8e5eef61cb08020c5d308094a3ccee9364b9c51e8d60ed
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer