879f25bb3c31a76dabfb60ae003c1c153e9d0fa60e656ae190a49c1bb6f4fb3e | Triage

Sharing

General

Target

splinter-handle.exe
Size

97.1MB
Sample

221001-db6xesfch2
MD5

b09a4ac1e850134d704ef691930140cf
SHA1

8b70b8811f742bda80a1fd55a23c8f0e9af936f0
SHA256

879f25bb3c31a76dabfb60ae003c1c153e9d0fa60e656ae190a49c1bb6f4fb3e
SHA512

e160d57b7e1ed81ef0c53c8b0fecb0a45a46cc026f7ba0e651be9dc1ce48c1a208e5f911b49561035581a65ba460c25670e43bc2585bec3318dd2ea58b398073
SSDEEP

3145728:OjNgYRHSC++Oy4inwANp7y4NT/LjB2VaYxIouZ:AxyCsy/PjrBotx1K

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  splinter-handle.exe
- Size
  
  97.1MB
- MD5
  
  b09a4ac1e850134d704ef691930140cf
- SHA1
  
  8b70b8811f742bda80a1fd55a23c8f0e9af936f0
- SHA256
  
  879f25bb3c31a76dabfb60ae003c1c153e9d0fa60e656ae190a49c1bb6f4fb3e
- SHA512
  
  e160d57b7e1ed81ef0c53c8b0fecb0a45a46cc026f7ba0e651be9dc1ce48c1a208e5f911b49561035581a65ba460c25670e43bc2585bec3318dd2ea58b398073
- SSDEEP
  
  3145728:OjNgYRHSC++Oy4inwANp7y4NT/LjB2VaYxIouZ:AxyCsy/PjrBotx1K
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1