21f4e23bf72d14fe9ac1604e6607d1602c45f98128569b1234da62939cdf883f

General
Target

21f4e23bf72d14fe9ac1604e6607d1602c45f98128569b1234da62939cdf883f

Size

407KB

Sample

220521-wgygcadgck

Score
7 /10
MD5

60930514941fd8da97348108586bd555

SHA1

8ccb7e0300c55ddfac7ef9ae799498dc49fb08ca

SHA256

21f4e23bf72d14fe9ac1604e6607d1602c45f98128569b1234da62939cdf883f

SHA512

4865ee0fb5801a342509aacb8521b037f2df0a829401c02e58072e47510f538bdb92dc331db323a2ed1213c98135707cec32cc2c69a02509c623c1ebe3e9354b

Malware Config
Targets
Target

21f4e23bf72d14fe9ac1604e6607d1602c45f98128569b1234da62939cdf883f

MD5

60930514941fd8da97348108586bd555

Filesize

407KB

Score
7/10
SHA1

8ccb7e0300c55ddfac7ef9ae799498dc49fb08ca

SHA256

21f4e23bf72d14fe9ac1604e6607d1602c45f98128569b1234da62939cdf883f

SHA512

4865ee0fb5801a342509aacb8521b037f2df0a829401c02e58072e47510f538bdb92dc331db323a2ed1213c98135707cec32cc2c69a02509c623c1ebe3e9354b

Tags

Signatures

  • Reads user/profile data of web browsers

    Description

    Infostealers often target stored browser data, which can include saved credentials etc.

    Tags

    TTPs

    Data from Local SystemCredentials in Files
  • Accesses cryptocurrency files/wallets, possible credential harvesting

    Tags

    TTPs

    Data from Local SystemCredentials in Files
  • Checks installed software on the system

    Description

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    Tags

    TTPs

    Query Registry

Related Tasks

MITRE ATT&CK Matrix
Command and Control
    Credential Access
    Defense Evasion
      Discovery
      Execution
        Exfiltration
          Impact
            Initial Access
              Lateral Movement
                Persistence
                  Privilege Escalation
                    Tasks

                    static1

                    behavioral1

                    7/10