sakari | ba2152e1c47846df69f2689d157b43d61571755a5b007216747fb7cbf98c66d9 | Triage

Sharing

General

Target

ba2152e1c47846df69f2689d157b43d61571755a5b007216747fb7cbf98c66d9
Size

163KB
Sample

220524-zwhwzsbhfr
MD5

08eeefa0916a8c5db54dce9c85533bff
SHA1

a8ce4cfb777ffe304d7336612022c591160d88e9
SHA256

ba2152e1c47846df69f2689d157b43d61571755a5b007216747fb7cbf98c66d9
SHA512

760c43b1dc67913df07f57fb2ca251231024f4d1f87e4d017e47ce417b3eaff91795203d045a5e7a1c60e6f40dec492d15515a74022febabea63aad129fcc387

Score

10^/10

sakari spyware stealer

Malware Config

Targets

- Target
  
  onetap crack 30 11/onetap.su crack.exe
- Size
  
  227KB
- MD5
  
  77ec3694234fd63bb2f63144d30f6c5a
- SHA1
  
  7f131acdce0941dad128060b01c223d3c4e46d2f
- SHA256
  
  d4b9641ffff9f0144c31909dd88652beba01bac3b2120e10d48a1b5813cdd5a7
- SHA512
  
  66e09687a69ca1bc0b53a281d5b1e1a360e8fe876876d7e71d36cfabfd566001e669d5856b2914b6496cbd677469da767d056e20c527cb44c3f410b59d6d3346
Score

10^/10

sakari spyware stealer
- sakari
  Sakari is a stealer written in C#.
  spyware stealer sakari
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

sakarispywarestealer

behavioral2

sakarispywarestealer