pandastealer | 73771687cc99119179751de6ff92b29350a75c0b8cd53074cab5ce7edae001f7 | Triage

Sharing

General

Target

73771687cc99119179751de6ff92b29350a75c0b8cd53074cab5ce7edae001f7
Size

5.6MB
Sample

220708-y2pq2sfcfl
MD5

850994426304c5a78d585c0e378c6160
SHA1

ffde6d0419876c305b8d50d89e0375a0e87a7da4
SHA256

73771687cc99119179751de6ff92b29350a75c0b8cd53074cab5ce7edae001f7
SHA512

40fd58f86ea63fc9a587f9e8907628f2cfcb5322b532249e9a4685b1efd2e3ab064d217f94dabc720500864904ebdf42b96358a410cf345f7a2f61547e9e57ac

Score

10^/10

pandastealer spyware stealer

Malware Config

Targets

- Target
  
  73771687cc99119179751de6ff92b29350a75c0b8cd53074cab5ce7edae001f7
- Size
  
  5.6MB
- MD5
  
  850994426304c5a78d585c0e378c6160
- SHA1
  
  ffde6d0419876c305b8d50d89e0375a0e87a7da4
- SHA256
  
  73771687cc99119179751de6ff92b29350a75c0b8cd53074cab5ce7edae001f7
- SHA512
  
  40fd58f86ea63fc9a587f9e8907628f2cfcb5322b532249e9a4685b1efd2e3ab064d217f94dabc720500864904ebdf42b96358a410cf345f7a2f61547e9e57ac
Score

10^/10

pandastealer spyware stealer
- PandaStealer
  Panda Stealer is a fork of CollectorProject Stealer written in C++.
  stealer pandastealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

pandastealerspywarestealer

behavioral2

pandastealerspywarestealer