9d6a780c9d7d1b3d95717fda1f4b388aef2d7282884b0c84714e3755dbabb71b | Triage

Resubmissions

26/09/2022, 11:58

220926-n45j6safg8 8

26/09/2022, 11:52

220926-n13leabhaq 8

28/08/2021, 13:15

210828-154l63lwp2 10

Sharing

General

Target

gerjjkrkjjk33.exe
Size

492KB
Sample

220926-n45j6safg8
MD5

e530cbe69e8f66f8a8560ad9f31bfdf3
SHA1

f72ca49a000436158abb13902e4b5a864729723a
SHA256

9d6a780c9d7d1b3d95717fda1f4b388aef2d7282884b0c84714e3755dbabb71b
SHA512

96d75cf5556c4f0ba356edbc62f60b81ee45347bd9a73a93553eba511af62b725f31cf2df3cb5530d6e50ce344dd41a7bf9adbf377627228166e718ee46d24af
SSDEEP

12288:wvt9TGeQdLP/5JtmiEk9AWVHF8XCf8o1bm/RIy42MhmZY8OxnislXc:wvt9TGRdz/awAaa/RqCZY8OFie

Score

8^/10

evasion spyware stealer

Malware Config

Targets

- Target
  
  gerjjkrkjjk33.exe
- Size
  
  492KB
- MD5
  
  e530cbe69e8f66f8a8560ad9f31bfdf3
- SHA1
  
  f72ca49a000436158abb13902e4b5a864729723a
- SHA256
  
  9d6a780c9d7d1b3d95717fda1f4b388aef2d7282884b0c84714e3755dbabb71b
- SHA512
  
  96d75cf5556c4f0ba356edbc62f60b81ee45347bd9a73a93553eba511af62b725f31cf2df3cb5530d6e50ce344dd41a7bf9adbf377627228166e718ee46d24af
- SSDEEP
  
  12288:wvt9TGeQdLP/5JtmiEk9AWVHF8XCf8o1bm/RIy42MhmZY8OxnislXc:wvt9TGRdz/awAaa/RqCZY8OFie
Score

8^/10

evasion spyware stealer
- Stops running service(s)
  evasion
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionspywarestealer