df74e25385f84306f7deab0f7f85b54080bf7a3126588932577979054f700954 | Triage

Sharing

General

Target

df74e25385f84306f7deab0f7f85b54080bf7a3126588932577979054f700954
Size

2.8MB
Sample

221019-18vxraahg4
MD5

b913bea1e15af0f1447cff9b19956d36
SHA1

6240a76cba59f92a1990040fe5e1de5bd126048e
SHA256

df74e25385f84306f7deab0f7f85b54080bf7a3126588932577979054f700954
SHA512

60b2f4419e2b4e8896772ccd5e687a2a5d3cc095a78acc1c3c5d4e139cba2fd9f1471be042273add9fb3ae3e180c416cec7d7e694f6220ed277a338fea937046
SSDEEP

49152:Q27aabiM/KO8SV2VYwUr4gjqniRW/rWgcykZ+r5ull1JoFPwx6bXqPb:bbGSkVCr4gjqnfrVc1ZMulh76K

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  df74e25385f84306f7deab0f7f85b54080bf7a3126588932577979054f700954
- Size
  
  2.8MB
- MD5
  
  b913bea1e15af0f1447cff9b19956d36
- SHA1
  
  6240a76cba59f92a1990040fe5e1de5bd126048e
- SHA256
  
  df74e25385f84306f7deab0f7f85b54080bf7a3126588932577979054f700954
- SHA512
  
  60b2f4419e2b4e8896772ccd5e687a2a5d3cc095a78acc1c3c5d4e139cba2fd9f1471be042273add9fb3ae3e180c416cec7d7e694f6220ed277a338fea937046
- SSDEEP
  
  49152:Q27aabiM/KO8SV2VYwUr4gjqniRW/rWgcykZ+r5ull1JoFPwx6bXqPb:bbGSkVCr4gjqnfrVc1ZMulh76K
Score

7^/10

spyware stealer
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2