df14cd565276cb483b718c4727f4d143522bdc5e088f958d3762ef8e326f4343 | Triage

Sharing

General

Target

df14cd565276cb483b718c4727f4d143522bdc5e088f958d3762ef8e326f4343
Size

5.6MB
Sample

221011-xa2e4ahfd7
MD5

97478e3bc82e16051abfec9f66fdf242
SHA1

64b5fe486afc1d09aa0f69f592cd5b4583d3e84a
SHA256

df14cd565276cb483b718c4727f4d143522bdc5e088f958d3762ef8e326f4343
SHA512

9249b70ed44ad62e835bb3a19860022d348a77967ffaf68f2ac7bd41b4719f5fb218db02739e886f7cde746fd20f43616fbce463e7e269d36d0dc10bca8973ff
SSDEEP

49152:RIEXiFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgi1ao:RIEVSjL+EnHOMz5ysZA5+bf6c

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  df14cd565276cb483b718c4727f4d143522bdc5e088f958d3762ef8e326f4343
- Size
  
  5.6MB
- MD5
  
  97478e3bc82e16051abfec9f66fdf242
- SHA1
  
  64b5fe486afc1d09aa0f69f592cd5b4583d3e84a
- SHA256
  
  df14cd565276cb483b718c4727f4d143522bdc5e088f958d3762ef8e326f4343
- SHA512
  
  9249b70ed44ad62e835bb3a19860022d348a77967ffaf68f2ac7bd41b4719f5fb218db02739e886f7cde746fd20f43616fbce463e7e269d36d0dc10bca8973ff
- SSDEEP
  
  49152:RIEXiFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgi1ao:RIEVSjL+EnHOMz5ysZA5+bf6c
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1