31991e47e3585ef3135378d1bc0b40b9056bd012e4134296232b0d63fcdc70a8 | Triage

Sharing

General

Target

31991e47e3585ef3135378d1bc0b40b9056bd012e4134296232b0d63fcdc70a8
Size

64KB
Sample

220919-x7yepsebb3
MD5

92702c04470811d2e7ca7b4e2e184a7a
SHA1

35a700c26ecc8f7befdb86226fc422c847e7782e
SHA256

31991e47e3585ef3135378d1bc0b40b9056bd012e4134296232b0d63fcdc70a8
SHA512

b0bcb5dc9ab7a28306f09c7a07a2086b828f868e9920b23dadf8a3238fd6f29972c13c333e94caa105db52bfe15cb27237eb8982b9893b2b4e078b754eefc391
SSDEEP

1536:EKv+JhwLSKjfInRArXF85D8bYx6Kah6A5MMM:3+GCWr185D8bi6KaMA5Md

Score

7^/10

persistence spyware stealer

Malware Config

Targets

- Target
  
  31991e47e3585ef3135378d1bc0b40b9056bd012e4134296232b0d63fcdc70a8
- Size
  
  64KB
- MD5
  
  92702c04470811d2e7ca7b4e2e184a7a
- SHA1
  
  35a700c26ecc8f7befdb86226fc422c847e7782e
- SHA256
  
  31991e47e3585ef3135378d1bc0b40b9056bd012e4134296232b0d63fcdc70a8
- SHA512
  
  b0bcb5dc9ab7a28306f09c7a07a2086b828f868e9920b23dadf8a3238fd6f29972c13c333e94caa105db52bfe15cb27237eb8982b9893b2b4e078b754eefc391
- SSDEEP
  
  1536:EKv+JhwLSKjfInRArXF85D8bYx6Kah6A5MMM:3+GCWr185D8bi6KaMA5Md
Score

7^/10

persistence spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistencespywarestealer

behavioral2

persistencespywarestealer