b0f15a5de3d2ad69a1758d34ef6e1c2e03299712c4b707877241f0a4dc2c4d94

Target

Size

415KB

Sample

220521-tzgkfadddr

Score

7 ^/10

MD5

8f72409a5891b12d5d9492c1f6541def

SHA1

2331c1aa8d071675f9ab490dd8681267c4dd073a

SHA256

b0f15a5de3d2ad69a1758d34ef6e1c2e03299712c4b707877241f0a4dc2c4d94

SHA512

b306f52760f9ccf549381dbacc8362ecad80ede26777ad49fa2dc93e8ad78e3518373344b5fbaf0c0a6404ba3f9b97a6b9f578cc0b803620568a203bdb63bcdb

Target

b0f15a5de3d2ad69a1758d34ef6e1c2e03299712c4b707877241f0a4dc2c4d94

MD5

8f72409a5891b12d5d9492c1f6541def

Filesize

415KB

Score

7^/10

SHA1

2331c1aa8d071675f9ab490dd8681267c4dd073a

SHA256

b0f15a5de3d2ad69a1758d34ef6e1c2e03299712c4b707877241f0a4dc2c4d94

SHA512

b306f52760f9ccf549381dbacc8362ecad80ede26777ad49fa2dc93e8ad78e3518373344b5fbaf0c0a6404ba3f9b97a6b9f578cc0b803620568a203bdb63bcdb

Signatures

Reads user/profile data of web browsers
Description

Infostealers often target stored browser data, which can include saved credentials etc.
Tags

spyware stealer

TTPs

Data from Local SystemCredentials in Files
Accesses cryptocurrency files/wallets, possible credential harvesting
Tags

spyware

TTPs

Data from Local SystemCredentials in Files
Checks installed software on the system
Description

Looks up Uninstall key entries in the registry to enumerate software on the system.
Tags

discovery

TTPs

Query Registry

Related Tasks

behavioral1

Collection

Data from Local System

Command and Control

Credential Access

Credentials in Files

Defense Evasion

Discovery

Query Registry

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

static1

behavioral1

discovery spyware stealer

7^/10

Tags

Signatures

Reads user/profile data of web browsers

Description

Tags

TTPs

Accesses cryptocurrency files/wallets, possible credential harvesting

Tags

TTPs

Checks installed software on the system

Description

Tags

TTPs

Related Tasks

static1

behavioral1