f9c0e01a685374cc32a4ddd4f7380bf04c7b988a9e6bb9810437db647d7dee86 | Triage

Sharing

General

Target

f9c0e01a685374cc32a4ddd4f7380bf04c7b988a9e6bb9810437db647d7dee86
Size

862KB
Sample

221020-ept1fsddb2
MD5

777e7785d6785a27cd4b0c2d0c01142f
SHA1

7293f02bc1b591804e22a70d15f9df0de3f5d8c8
SHA256

f9c0e01a685374cc32a4ddd4f7380bf04c7b988a9e6bb9810437db647d7dee86
SHA512

5cd90e949a8725bac52f24ef9cf7e2378aafbabec7d8bce56ca0af5f071b426301257e0ece700e32b6b95cd525491ee62c13e1009dc0b11c9c2d6f21b644bf58
SSDEEP

24576:zqm1RU74kumxjC7Hgp5fzrzjfJglEWaE19akgSeD1GGQk1GBzv:Nwsm9CmJ3BslZzakgcG/ozv

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  f9c0e01a685374cc32a4ddd4f7380bf04c7b988a9e6bb9810437db647d7dee86
- Size
  
  862KB
- MD5
  
  777e7785d6785a27cd4b0c2d0c01142f
- SHA1
  
  7293f02bc1b591804e22a70d15f9df0de3f5d8c8
- SHA256
  
  f9c0e01a685374cc32a4ddd4f7380bf04c7b988a9e6bb9810437db647d7dee86
- SHA512
  
  5cd90e949a8725bac52f24ef9cf7e2378aafbabec7d8bce56ca0af5f071b426301257e0ece700e32b6b95cd525491ee62c13e1009dc0b11c9c2d6f21b644bf58
- SSDEEP
  
  24576:zqm1RU74kumxjC7Hgp5fzrzjfJglEWaE19akgSeD1GGQk1GBzv:Nwsm9CmJ3BslZzakgcG/ozv
Score

8^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2