b2d565c894eae100258f5dbd369acf5db5bcb42096ba0ecbecf72b10a03250e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2d565c894eae100258f5dbd369acf5db5bcb42096ba0ecbecf72b10a03250e7
Size

5.6MB
Sample

221011-s8x34scch9
MD5

a23413446f9cbf33cc0d9a0237eb9726
SHA1

03de35d83f67320e64f20415b88ce0cdc656c90b
SHA256

b2d565c894eae100258f5dbd369acf5db5bcb42096ba0ecbecf72b10a03250e7
SHA512

2120d3ee70ce238cb7d52c5a27bdf530ad19149eaf5dc8f345c593bce8c2b30fe178c149aa10c0e7a3baa3a2fbcb2c7c1decb890b515838c29864e80b5d18aee
SSDEEP

49152:RIEXJFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgi1ao:RIE8SjL+EnHOMz5ysZA5+bf6c

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  b2d565c894eae100258f5dbd369acf5db5bcb42096ba0ecbecf72b10a03250e7
- Size
  
  5.6MB
- MD5
  
  a23413446f9cbf33cc0d9a0237eb9726
- SHA1
  
  03de35d83f67320e64f20415b88ce0cdc656c90b
- SHA256
  
  b2d565c894eae100258f5dbd369acf5db5bcb42096ba0ecbecf72b10a03250e7
- SHA512
  
  2120d3ee70ce238cb7d52c5a27bdf530ad19149eaf5dc8f345c593bce8c2b30fe178c149aa10c0e7a3baa3a2fbcb2c7c1decb890b515838c29864e80b5d18aee
- SSDEEP
  
  49152:RIEXJFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgi1ao:RIE8SjL+EnHOMz5ysZA5+bf6c
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1