e1d5a643d44348e3ba427ed22d036b7888fdbe635435037c2639408c9e8aa7cf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1d5a643d44348e3ba427ed22d036b7888fdbe635435037c2639408c9e8aa7cf
Size

94KB
Sample

221030-n1f3eaaeam
MD5

84ca5a5a64226660a29f1281717fabf0
SHA1

a6ae866788ac46019463f77c23de9d5773457a44
SHA256

e1d5a643d44348e3ba427ed22d036b7888fdbe635435037c2639408c9e8aa7cf
SHA512

96416e43c485ce14f02d0de50fdee7adacd17a9aa234b92b99e95ee90777a2b3d0b13920eb331bac0832f1468d7109f497b28e598329f0e609d5550e4ea2cd9a
SSDEEP

1536:q4OfHslhhlETri9gIEJLVxippL2+CAfRG6ToGkYXg82gD:q4OUTeLVxia+CAfRG6T1kYXg82gD

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  e1d5a643d44348e3ba427ed22d036b7888fdbe635435037c2639408c9e8aa7cf
- Size
  
  94KB
- MD5
  
  84ca5a5a64226660a29f1281717fabf0
- SHA1
  
  a6ae866788ac46019463f77c23de9d5773457a44
- SHA256
  
  e1d5a643d44348e3ba427ed22d036b7888fdbe635435037c2639408c9e8aa7cf
- SHA512
  
  96416e43c485ce14f02d0de50fdee7adacd17a9aa234b92b99e95ee90777a2b3d0b13920eb331bac0832f1468d7109f497b28e598329f0e609d5550e4ea2cd9a
- SSDEEP
  
  1536:q4OfHslhhlETri9gIEJLVxippL2+CAfRG6ToGkYXg82gD:q4OUTeLVxia+CAfRG6T1kYXg82gD
Score

7^/10

spyware stealer
- Reads data files stored by FTP clients
  Tries to access configuration files associated with programs like FileZilla.
  spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2