f8689e4e8a829d2b2bea37c82ffe568b2db18463e706e63cebc33e375cb8d291 | Triage

Resubmissions

14-10-2022 17:56

221014-wh41hseaal 7

14-10-2022 17:48

221014-wdxewadhg3 8

14-10-2022 17:34

221014-v5h6wsdhfn 8

Sharing

General

Target

Pass_1234_Setup(4).rar
Size

7.9MB
Sample

221014-wh41hseaal
MD5

5726dd2f698a44a236eb8118d966130e
SHA1

71e206c1616d62b9ca1195bcd7c5e3abb66ca9ff
SHA256

f8689e4e8a829d2b2bea37c82ffe568b2db18463e706e63cebc33e375cb8d291
SHA512

45e9bfbc43040f5126f85a887a7665ed7f89b3d4f864ab596f07ed3860ea7c087cb5b9e303ffc2682a2c2943f05012aedbad81c721cad1ab3d4264931d91e457
SSDEEP

196608:3NsorGhLMYayVY5tx/sGBKP6OY4F7gkOMEuL34zcl:3wQyV+xfBKPjFEklIzcl

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  Setup.exe
- Size
  
  376.9MB
- MD5
  
  2f9db86c1f07387ba6b0168d62ed2950
- SHA1
  
  37ffc85149a8bdb31044c82c775ce329421ff77c
- SHA256
  
  cfb9b1ded6e26c2ae213126dbe5301394754b076acf7d9b033794c79c4eeb8b2
- SHA512
  
  9f5a3aa0447e09409306b36b0b41dbafe9e08c0112d0a43e6194c57830b5e023271d66010130b99d58cad8f352006dc63e82567e9697eef35cd6e0fdf526ac35
- SSDEEP
  
  196608:3IERCPHzGscu98PPz6qC+pTDGwud0AvEO:4ERaHzGEgOqH/GwTEEO
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2