dd7136c20a28da9087a7bc8604d0e18d3b455b3c697285a5826409e68c9eab90

Target

Size

407KB

Sample

220521-tg5vbadcep

Score

7 ^/10

MD5

7c4c6fc4d6df19db0b3fb4d8273c6cd4

SHA1

f839b42fc625cbea2f5e47e48d29f1ba1f30a559

SHA256

dd7136c20a28da9087a7bc8604d0e18d3b455b3c697285a5826409e68c9eab90

SHA512

44fde129e9ccc1919782950c4935d6ad8a48ce13e2ea1e5970bbafc45cf96c775b8083c0203003464564258a0c826b3a5ea5468560b6021607a498a11bb163b6

Target

dd7136c20a28da9087a7bc8604d0e18d3b455b3c697285a5826409e68c9eab90

MD5

7c4c6fc4d6df19db0b3fb4d8273c6cd4

Filesize

407KB

Score

7^/10

SHA1

f839b42fc625cbea2f5e47e48d29f1ba1f30a559

SHA256

dd7136c20a28da9087a7bc8604d0e18d3b455b3c697285a5826409e68c9eab90

SHA512

44fde129e9ccc1919782950c4935d6ad8a48ce13e2ea1e5970bbafc45cf96c775b8083c0203003464564258a0c826b3a5ea5468560b6021607a498a11bb163b6

Signatures

Reads user/profile data of web browsers
Description

Infostealers often target stored browser data, which can include saved credentials etc.
Tags

spyware stealer

TTPs

Data from Local SystemCredentials in Files
Accesses cryptocurrency files/wallets, possible credential harvesting
Tags

spyware

TTPs

Data from Local SystemCredentials in Files
Checks installed software on the system
Description

Looks up Uninstall key entries in the registry to enumerate software on the system.
Tags

discovery

TTPs

Query Registry

Related Tasks

behavioral1

Collection

Data from Local System

Command and Control

Credential Access

Credentials in Files

Defense Evasion

Discovery

Query Registry

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

static1

behavioral1

discovery spyware stealer

7^/10

Tags

Signatures

Reads user/profile data of web browsers

Description

Tags

TTPs

Accesses cryptocurrency files/wallets, possible credential harvesting

Tags

TTPs

Checks installed software on the system

Description

Tags

TTPs

Related Tasks

static1

behavioral1