e1ee767d4e4624a4d66cbf0fbd4ee27761a818b047d23a6f3bbddfa179d9151d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1ee767d4e4624a4d66cbf0fbd4ee27761a818b047d23a6f3bbddfa179d9151d
Size

5.8MB
Sample

221015-f2aysafca6
MD5

b7ebc7c4f70682767cc9281e89bd3a03
SHA1

fd900fa7ae8bdb960f52f88e087b1ea4cfc79cf5
SHA256

e1ee767d4e4624a4d66cbf0fbd4ee27761a818b047d23a6f3bbddfa179d9151d
SHA512

30c044ba4b637fc4924ae43323269ec4ddcce57a2a2dd8560c91a90af8e58566db17100c1b97f88e0d052c64fc8135a074847b81e46cdd62776614f62179dcad
SSDEEP

49152:qnV9xaLFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgiR:qnV9xpSjL+EnHOMz5ysZA5+bf6c

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  e1ee767d4e4624a4d66cbf0fbd4ee27761a818b047d23a6f3bbddfa179d9151d
- Size
  
  5.8MB
- MD5
  
  b7ebc7c4f70682767cc9281e89bd3a03
- SHA1
  
  fd900fa7ae8bdb960f52f88e087b1ea4cfc79cf5
- SHA256
  
  e1ee767d4e4624a4d66cbf0fbd4ee27761a818b047d23a6f3bbddfa179d9151d
- SHA512
  
  30c044ba4b637fc4924ae43323269ec4ddcce57a2a2dd8560c91a90af8e58566db17100c1b97f88e0d052c64fc8135a074847b81e46cdd62776614f62179dcad
- SSDEEP
  
  49152:qnV9xaLFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgiR:qnV9xpSjL+EnHOMz5ysZA5+bf6c
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1