ba44c14edcbf89d3128105f99ce5d598b442da8e406cca5c5d9e90d3ce2dc256 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba44c14edcbf89d3128105f99ce5d598b442da8e406cca5c5d9e90d3ce2dc256
Size

5.8MB
Sample

221015-gtzgvafcc2
MD5

a25bd6fe6a22edae5055289d324115d6
SHA1

42c3524a88ebe82f1f2ada3f34829f228db877cd
SHA256

ba44c14edcbf89d3128105f99ce5d598b442da8e406cca5c5d9e90d3ce2dc256
SHA512

229958d931fc3f80ae16f84791cdb8fd0243e969e380bbc57afcbbc05bfb75f408c945735cfccbb489c27be9f6471023e9b23ee355380edad25d208e381f8499
SSDEEP

49152:qnV9xamFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgiR:qnV9xqSjL+EnHOMz5ysZA5+bf6c

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  ba44c14edcbf89d3128105f99ce5d598b442da8e406cca5c5d9e90d3ce2dc256
- Size
  
  5.8MB
- MD5
  
  a25bd6fe6a22edae5055289d324115d6
- SHA1
  
  42c3524a88ebe82f1f2ada3f34829f228db877cd
- SHA256
  
  ba44c14edcbf89d3128105f99ce5d598b442da8e406cca5c5d9e90d3ce2dc256
- SHA512
  
  229958d931fc3f80ae16f84791cdb8fd0243e969e380bbc57afcbbc05bfb75f408c945735cfccbb489c27be9f6471023e9b23ee355380edad25d208e381f8499
- SSDEEP
  
  49152:qnV9xamFe6iRyhJ3jkqQVSfWVXqASv1x1dKO/5t7WGiocfGJDcjQcy20RHrzKgiR:qnV9xqSjL+EnHOMz5ysZA5+bf6c
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1