87fbcaaa029236f3a6b7de6cd8dbbd811804e0b26142c1395b0e9e84f57aaaed | Triage

Resubmissions

24/06/2022, 10:03

220624-l3ek9aech6 8

24/06/2022, 08:32

220624-ke9k2sdhb8 7

Sharing

General

Target

Акт сверки №0006851 от 10.06.2022 Номер контракта 6548213218 Основного договора .exe
Size

59KB
Sample

220624-ke9k2sdhb8
MD5

0700f3bffdbbf5ecc2a9c63f8b3742a8
SHA1

38344723d174f57f736cbc82accbfb632b778f8a
SHA256

87fbcaaa029236f3a6b7de6cd8dbbd811804e0b26142c1395b0e9e84f57aaaed
SHA512

1a7cb6205cc15d354f89f55e999cdb6c5f609866b417bcabf7437955f4562c994e9bdf0860ce67d6e3999a9771701a670f862d8c3d6f7cef8f743f2be0062b21

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  Акт сверки №0006851 от 10.06.2022 Номер контракта 6548213218 Основного договора .exe
- Size
  
  59KB
- MD5
  
  0700f3bffdbbf5ecc2a9c63f8b3742a8
- SHA1
  
  38344723d174f57f736cbc82accbfb632b778f8a
- SHA256
  
  87fbcaaa029236f3a6b7de6cd8dbbd811804e0b26142c1395b0e9e84f57aaaed
- SHA512
  
  1a7cb6205cc15d354f89f55e999cdb6c5f609866b417bcabf7437955f4562c994e9bdf0860ce67d6e3999a9771701a670f862d8c3d6f7cef8f743f2be0062b21
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2