d168c91e8c4b5f63a6e928f1694b2d81036d071210fcdf5ba2e0f1bf44e1ba4b | Triage

Sharing

General

Target

d168c91e8c4b5f63a6e928f1694b2d81036d071210fcdf5ba2e0f1bf44e1ba4b
Size

4.7MB
Sample

221007-rxkszacfh7
MD5

58df6dd5765088594795f3342aa08321
SHA1

8fa0f6f74a6149777478ed54636911af47b8f4a6
SHA256

d168c91e8c4b5f63a6e928f1694b2d81036d071210fcdf5ba2e0f1bf44e1ba4b
SHA512

6074c8a3796064f8243cef1eecdd5c246b9f7985bb3ba6275248ddb076464450fd37241ab7909a33029f60938818b2a764e3647270969e41d27b31dce775f3bd
SSDEEP

98304:1W7IupKO+6PbFmS3VjVEOeTtJaAbLECnrZXJT7i:1WrbFmS3VjVEOeTtJHbdnrz7

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  d168c91e8c4b5f63a6e928f1694b2d81036d071210fcdf5ba2e0f1bf44e1ba4b
- Size
  
  4.7MB
- MD5
  
  58df6dd5765088594795f3342aa08321
- SHA1
  
  8fa0f6f74a6149777478ed54636911af47b8f4a6
- SHA256
  
  d168c91e8c4b5f63a6e928f1694b2d81036d071210fcdf5ba2e0f1bf44e1ba4b
- SHA512
  
  6074c8a3796064f8243cef1eecdd5c246b9f7985bb3ba6275248ddb076464450fd37241ab7909a33029f60938818b2a764e3647270969e41d27b31dce775f3bd
- SSDEEP
  
  98304:1W7IupKO+6PbFmS3VjVEOeTtJaAbLECnrZXJT7i:1WrbFmS3VjVEOeTtJHbdnrz7
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1