b2e342aa5f2c252aac742eb2164bd089d358bea8116f524a6190b5c8841cf73c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2e342aa5f2c252aac742eb2164bd089d358bea8116f524a6190b5c8841cf73c
Size

5.6MB
Sample

221011-rdbe7ahaa3
MD5

150374e04eed6b787c7dc7c2f3b19630
SHA1

547256083f5c646c5274ce8b042c46e48d2214f8
SHA256

b2e342aa5f2c252aac742eb2164bd089d358bea8116f524a6190b5c8841cf73c
SHA512

60406d33897c9a5e4a86a549b24aa07183182d5bae811c2ff321047df38870da77f50dd0171bd5ba1b45aefff6fd0c71535664a36470e370f436005478571fef
SSDEEP

49152:RIEXqFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgi1ao:RIENSjL+EnHOMz5ysZA5+bf6c

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  b2e342aa5f2c252aac742eb2164bd089d358bea8116f524a6190b5c8841cf73c
- Size
  
  5.6MB
- MD5
  
  150374e04eed6b787c7dc7c2f3b19630
- SHA1
  
  547256083f5c646c5274ce8b042c46e48d2214f8
- SHA256
  
  b2e342aa5f2c252aac742eb2164bd089d358bea8116f524a6190b5c8841cf73c
- SHA512
  
  60406d33897c9a5e4a86a549b24aa07183182d5bae811c2ff321047df38870da77f50dd0171bd5ba1b45aefff6fd0c71535664a36470e370f436005478571fef
- SSDEEP
  
  49152:RIEXqFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgi1ao:RIENSjL+EnHOMz5ysZA5+bf6c
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1