38039ca0791871161f913df75ca0c0c84a5d997d47e354da376134e455041281 | Triage

Sharing

General

Target

38039ca0791871161f913df75ca0c0c84a5d997d47e354da376134e455041281
Size

284KB
Sample

221123-xecbrseg36
MD5

4464f9bc5babc1e96c985ac1f8c9afa0
SHA1

2df8c41aedbef55365678f2e33f5caec401e20f9
SHA256

38039ca0791871161f913df75ca0c0c84a5d997d47e354da376134e455041281
SHA512

858fb81b70018255a7436c5473242ea4e429754182c6fa548895cda8959379088c74a944c6872ed4c18fd52237da7ed86a4450de38602a8116c1d93c1da79749
SSDEEP

6144:clDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:clDx7mlHZo7HoRv177ePH

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  38039ca0791871161f913df75ca0c0c84a5d997d47e354da376134e455041281
- Size
  
  284KB
- MD5
  
  4464f9bc5babc1e96c985ac1f8c9afa0
- SHA1
  
  2df8c41aedbef55365678f2e33f5caec401e20f9
- SHA256
  
  38039ca0791871161f913df75ca0c0c84a5d997d47e354da376134e455041281
- SHA512
  
  858fb81b70018255a7436c5473242ea4e429754182c6fa548895cda8959379088c74a944c6872ed4c18fd52237da7ed86a4450de38602a8116c1d93c1da79749
- SSDEEP
  
  6144:clDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:clDx7mlHZo7HoRv177ePH
Score

8^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2