9b7691d1a96bdd3107408b3b4b0e318756a18ec33560920b2a62d600d379d5b5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b7691d1a96bdd3107408b3b4b0e318756a18ec33560920b2a62d600d379d5b5
Size

405KB
Sample

221106-ab6d4scgaj
MD5

83f89c323b1098b3aea38140fe1c89fe
SHA1

cd1141706936e2350650417ad929b4db7cff9e1f
SHA256

9b7691d1a96bdd3107408b3b4b0e318756a18ec33560920b2a62d600d379d5b5
SHA512

799cb2bfbbde27a8809a9d4e4678412747fd7c0435e77181e45c9ffb5c2c7348df5687384d88db471885db694fee856c4b436f78521e15b0f2221d099930cc53
SSDEEP

6144:tr3jZKR+YB7lwuzsAWlNmm0AULom8TxshGYcIN:tjjZKoo7uAAmmJx

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  9b7691d1a96bdd3107408b3b4b0e318756a18ec33560920b2a62d600d379d5b5
- Size
  
  405KB
- MD5
  
  83f89c323b1098b3aea38140fe1c89fe
- SHA1
  
  cd1141706936e2350650417ad929b4db7cff9e1f
- SHA256
  
  9b7691d1a96bdd3107408b3b4b0e318756a18ec33560920b2a62d600d379d5b5
- SHA512
  
  799cb2bfbbde27a8809a9d4e4678412747fd7c0435e77181e45c9ffb5c2c7348df5687384d88db471885db694fee856c4b436f78521e15b0f2221d099930cc53
- SSDEEP
  
  6144:tr3jZKR+YB7lwuzsAWlNmm0AULom8TxshGYcIN:tjjZKoo7uAAmmJx
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer