3a31805ece3bf663781939d4baf36699115de14c9814c0142b6c2aa2cc2e2cda | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a31805ece3bf663781939d4baf36699115de14c9814c0142b6c2aa2cc2e2cda
Size

4.7MB
Sample

221010-retm6acccn
MD5

cd68675cfab7247737d8b4f0c9329dbd
SHA1

ea9b6ac08a7fb50fda4d7fbad9a9bf7a39f66019
SHA256

3a31805ece3bf663781939d4baf36699115de14c9814c0142b6c2aa2cc2e2cda
SHA512

d436818db6b3e9e5276bfa9b6fd38fa239a71f23662839dce3d511161a350d7b5f158dd5490224cd8d35b9c516ee6d9a57484c54486ccce1acac0ed16fa66ec1
SSDEEP

98304:vUjPpKO+6PbFmS3VjVEOeTtJaAbLECnrZXJT7x:v+bFmS3VjVEOeTtJHbdnrz7

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  3a31805ece3bf663781939d4baf36699115de14c9814c0142b6c2aa2cc2e2cda
- Size
  
  4.7MB
- MD5
  
  cd68675cfab7247737d8b4f0c9329dbd
- SHA1
  
  ea9b6ac08a7fb50fda4d7fbad9a9bf7a39f66019
- SHA256
  
  3a31805ece3bf663781939d4baf36699115de14c9814c0142b6c2aa2cc2e2cda
- SHA512
  
  d436818db6b3e9e5276bfa9b6fd38fa239a71f23662839dce3d511161a350d7b5f158dd5490224cd8d35b9c516ee6d9a57484c54486ccce1acac0ed16fa66ec1
- SSDEEP
  
  98304:vUjPpKO+6PbFmS3VjVEOeTtJaAbLECnrZXJT7x:v+bFmS3VjVEOeTtJHbdnrz7
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1