9119d27278482c821e678a23ee441d180370cdaa9e94ecfff3ee60fed868ffc8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9119d27278482c821e678a23ee441d180370cdaa9e94ecfff3ee60fed868ffc8
Size

786KB
Sample

221003-11n48shefk
MD5

054267b256c2cfdffe332832188dac70
SHA1

22cbf8f49db96c04246071d9e811ee680469e19c
SHA256

9119d27278482c821e678a23ee441d180370cdaa9e94ecfff3ee60fed868ffc8
SHA512

2ad6d3526efcfb14407b848906ffe28b8a8a569c72795c97adf3cc1a2e6d9774f6af989cbd9392064d149539482c51ce592afe1986b9a811cca1ae72bc0bc11b
SSDEEP

6144:EBQgqTudbAZeNa5JXZ//0RQlTFQ8Ff2BzemM1EZ0wGHvItfxX7puI:EBQgqiSJJERQl5vd2BzFM1EKwGPI8I

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  9119d27278482c821e678a23ee441d180370cdaa9e94ecfff3ee60fed868ffc8
- Size
  
  786KB
- MD5
  
  054267b256c2cfdffe332832188dac70
- SHA1
  
  22cbf8f49db96c04246071d9e811ee680469e19c
- SHA256
  
  9119d27278482c821e678a23ee441d180370cdaa9e94ecfff3ee60fed868ffc8
- SHA512
  
  2ad6d3526efcfb14407b848906ffe28b8a8a569c72795c97adf3cc1a2e6d9774f6af989cbd9392064d149539482c51ce592afe1986b9a811cca1ae72bc0bc11b
- SSDEEP
  
  6144:EBQgqTudbAZeNa5JXZ//0RQlTFQ8Ff2BzemM1EZ0wGHvItfxX7puI:EBQgqiSJJERQl5vd2BzFM1EKwGPI8I
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2