a5aa365d6d346a7fe83c8e4c8f8d8a955c7bc93ddeae5ede4e94d0794d4bb963 | Triage

Sharing

General

Target

a5aa365d6d346a7fe83c8e4c8f8d8a955c7bc93ddeae5ede4e94d0794d4bb963
Size

919KB
Sample

221124-e9gwmach2v
MD5

b9bdddad2b53c887db96319aa30676c2
SHA1

e5f58be19497eb1622ee356a38977a4e6af52f61
SHA256

a5aa365d6d346a7fe83c8e4c8f8d8a955c7bc93ddeae5ede4e94d0794d4bb963
SHA512

17a120aa1d6a26106453d7ec292bb4e9808193eadc862525ed5f9903c0d8552d02338415489aa7fc5283b461a88435ed9385394a4092c4b116dcdf02ea413926
SSDEEP

24576:4Uac7EJEhlpyouGViLlvOMjoJFRJHJ2rHbX/:427E4LDVQvOMjoRJpOHT

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  a5aa365d6d346a7fe83c8e4c8f8d8a955c7bc93ddeae5ede4e94d0794d4bb963
- Size
  
  919KB
- MD5
  
  b9bdddad2b53c887db96319aa30676c2
- SHA1
  
  e5f58be19497eb1622ee356a38977a4e6af52f61
- SHA256
  
  a5aa365d6d346a7fe83c8e4c8f8d8a955c7bc93ddeae5ede4e94d0794d4bb963
- SHA512
  
  17a120aa1d6a26106453d7ec292bb4e9808193eadc862525ed5f9903c0d8552d02338415489aa7fc5283b461a88435ed9385394a4092c4b116dcdf02ea413926
- SSDEEP
  
  24576:4Uac7EJEhlpyouGViLlvOMjoJFRJHJ2rHbX/:427E4LDVQvOMjoRJpOHT
Score

8^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2