571d2c94186af934f224050fb5a4f70817cfe7799d0b6b3b080a57213eddafca | Triage

Sharing

General

Target

571d2c94186af934f224050fb5a4f70817cfe7799d0b6b3b080a57213eddafca
Size

2.8MB
Sample

221123-vpjsgsce61
MD5

a09f78791232edec6d799bff069f6617
SHA1

ea0ea81fca9d25b3b8a89d11618abfe010575abb
SHA256

571d2c94186af934f224050fb5a4f70817cfe7799d0b6b3b080a57213eddafca
SHA512

eba310d26372560e6dd8f55fe85d011006155dcb0cc82bc648ecbf7eed7fffeec413687d2e191ac08baa52349c1f55c4e54b8bc85eb08bb3d84e29faea69df0c
SSDEEP

49152:QWLI8a5hlVZL4XFZqXWO7iEdduBcqAQ6aIQF:6hPZJdkc

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  571d2c94186af934f224050fb5a4f70817cfe7799d0b6b3b080a57213eddafca
- Size
  
  2.8MB
- MD5
  
  a09f78791232edec6d799bff069f6617
- SHA1
  
  ea0ea81fca9d25b3b8a89d11618abfe010575abb
- SHA256
  
  571d2c94186af934f224050fb5a4f70817cfe7799d0b6b3b080a57213eddafca
- SHA512
  
  eba310d26372560e6dd8f55fe85d011006155dcb0cc82bc648ecbf7eed7fffeec413687d2e191ac08baa52349c1f55c4e54b8bc85eb08bb3d84e29faea69df0c
- SSDEEP
  
  49152:QWLI8a5hlVZL4XFZqXWO7iEdduBcqAQ6aIQF:6hPZJdkc
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops Chrome extension
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer