7d2a274fa81cf0ffe0f231f6a5e6e8e8806463a17762b8290842ce2ec0cc2b9c | Triage

Sharing

General

Target

7d2a274fa81cf0ffe0f231f6a5e6e8e8806463a17762b8290842ce2ec0cc2b9c
Size

2.3MB
Sample

221123-t9e5csgc98
MD5

5658bfc415c6c6fd7edadeb14cfba0e6
SHA1

b2e620068dc04c00271edc68a9fddd7872b66306
SHA256

7d2a274fa81cf0ffe0f231f6a5e6e8e8806463a17762b8290842ce2ec0cc2b9c
SHA512

4a8f0fe805d2e8ce1f1aa3255242de301a9dcf66ca0c156faad8064c503d0ca522182a93e6308c77bb3399dd9587e6f36653c97153d84da15304439b9ba81c17
SSDEEP

49152:eLjThu7R9ExgSCrpn6sdGUUWDEbYrQ2CaT5zixe8cWACmJW3kYEAjC:eLfk7R9EqSCrpn6Z8DsYrIaT5za4WAHW

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  7d2a274fa81cf0ffe0f231f6a5e6e8e8806463a17762b8290842ce2ec0cc2b9c
- Size
  
  2.3MB
- MD5
  
  5658bfc415c6c6fd7edadeb14cfba0e6
- SHA1
  
  b2e620068dc04c00271edc68a9fddd7872b66306
- SHA256
  
  7d2a274fa81cf0ffe0f231f6a5e6e8e8806463a17762b8290842ce2ec0cc2b9c
- SHA512
  
  4a8f0fe805d2e8ce1f1aa3255242de301a9dcf66ca0c156faad8064c503d0ca522182a93e6308c77bb3399dd9587e6f36653c97153d84da15304439b9ba81c17
- SSDEEP
  
  49152:eLjThu7R9ExgSCrpn6sdGUUWDEbYrQ2CaT5zixe8cWACmJW3kYEAjC:eLfk7R9EqSCrpn6Z8DsYrIaT5za4WAHW
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops Chrome extension
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer