277340df900d36d70a852a441eda882b09171fbd076ee2474aa4eab2c3b99f3c | Triage

Sharing

General

Target

277340df900d36d70a852a441eda882b09171fbd076ee2474aa4eab2c3b99f3c
Size

284KB
Sample

221004-g4dm5afefl
MD5

4e987932381c1753dd1b6ccee30acbb0
SHA1

4f55c3c4df73c4da990bcc409c6cf1c57cd2e0dd
SHA256

277340df900d36d70a852a441eda882b09171fbd076ee2474aa4eab2c3b99f3c
SHA512

35e031143a5a5d5c574bab0d2e58425c59282f16c4ee0bc399cb75b8cc0ed56175088c06b533c9b1c4f7c3979b9564b1dc572e75844ddb0ec975df94f4141a13
SSDEEP

6144:flDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:flDx7mlHZo7HoRv177ePH

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  277340df900d36d70a852a441eda882b09171fbd076ee2474aa4eab2c3b99f3c
- Size
  
  284KB
- MD5
  
  4e987932381c1753dd1b6ccee30acbb0
- SHA1
  
  4f55c3c4df73c4da990bcc409c6cf1c57cd2e0dd
- SHA256
  
  277340df900d36d70a852a441eda882b09171fbd076ee2474aa4eab2c3b99f3c
- SHA512
  
  35e031143a5a5d5c574bab0d2e58425c59282f16c4ee0bc399cb75b8cc0ed56175088c06b533c9b1c4f7c3979b9564b1dc572e75844ddb0ec975df94f4141a13
- SSDEEP
  
  6144:flDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:flDx7mlHZo7HoRv177ePH
Score

8^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2