950227046eff893851d2181f222191320086400ba042a902b97df527b3e377da | Triage

Sharing

General

Target

950227046eff893851d2181f222191320086400ba042a902b97df527b3e377da
Size

672KB
Sample

221002-jjdthafean
MD5

6684af5ddae0e1faac8d70180c4d9b70
SHA1

7d85da3ffc446ac16a56221f6cc70facdb657368
SHA256

950227046eff893851d2181f222191320086400ba042a902b97df527b3e377da
SHA512

518df03249009fabc185e0696540b61ff6d1a926539300c9da1f3401987efcd51f69ceb4f4f40e69d506f4d9c31152b35dc68c5d0f2c2ae4051f5e31a2e4ad43
SSDEEP

12288:YyEDqjgIK7FGMUqzjXhX9iU1evbEudwNYsjxiQK1+IPiSu/wOu/WH:KmEV7ZUqn59revbE3Y7QK1+IP

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  950227046eff893851d2181f222191320086400ba042a902b97df527b3e377da
- Size
  
  672KB
- MD5
  
  6684af5ddae0e1faac8d70180c4d9b70
- SHA1
  
  7d85da3ffc446ac16a56221f6cc70facdb657368
- SHA256
  
  950227046eff893851d2181f222191320086400ba042a902b97df527b3e377da
- SHA512
  
  518df03249009fabc185e0696540b61ff6d1a926539300c9da1f3401987efcd51f69ceb4f4f40e69d506f4d9c31152b35dc68c5d0f2c2ae4051f5e31a2e4ad43
- SSDEEP
  
  12288:YyEDqjgIK7FGMUqzjXhX9iU1evbEudwNYsjxiQK1+IPiSu/wOu/WH:KmEV7ZUqn59revbE3Y7QK1+IP
Score

7^/10

spyware stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2