bfbb9ba7c6bb74a182f58f157c1c8c101bb298244cb2aba2472555b21bceb2ee | Triage

Sharing

General

Target

bfbb9ba7c6bb74a182f58f157c1c8c101bb298244cb2aba2472555b21bceb2ee
Size

436KB
Sample

221121-j34h9sah52
MD5

2174eebea69195d0713cf32f1f8f2fdc
SHA1

56003d633ae22dcb1a4736e88a263efea66763e2
SHA256

bfbb9ba7c6bb74a182f58f157c1c8c101bb298244cb2aba2472555b21bceb2ee
SHA512

dc4944988950c89473caefb3bb9a461d27fdeabc83af36a53733b1030cc802f84f5e98b413c6391a3deefa64c31216febbcd38871cdc64d178ca86da33b55364
SSDEEP

6144:DW0rvX/eSqjc3HsTaxoq3svM45ElHcahWWRRXU6llDVA9oL4:/X/eOyaiq3svMAEFcgWWRRX5ncM4

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  bfbb9ba7c6bb74a182f58f157c1c8c101bb298244cb2aba2472555b21bceb2ee
- Size
  
  436KB
- MD5
  
  2174eebea69195d0713cf32f1f8f2fdc
- SHA1
  
  56003d633ae22dcb1a4736e88a263efea66763e2
- SHA256
  
  bfbb9ba7c6bb74a182f58f157c1c8c101bb298244cb2aba2472555b21bceb2ee
- SHA512
  
  dc4944988950c89473caefb3bb9a461d27fdeabc83af36a53733b1030cc802f84f5e98b413c6391a3deefa64c31216febbcd38871cdc64d178ca86da33b55364
- SSDEEP
  
  6144:DW0rvX/eSqjc3HsTaxoq3svM45ElHcahWWRRXU6llDVA9oL4:/X/eOyaiq3svMAEFcgWWRRX5ncM4
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2