ef4bddcebf517563f2e0d1791557c3757950e79b3e33fa786a203c1182dca768 | Triage

Sharing

General

Target

ef4bddcebf517563f2e0d1791557c3757950e79b3e33fa786a203c1182dca768
Size

2.3MB
Sample

221125-hlecdace81
MD5

700be8dd95ea48a80417ad96c6f5f8d6
SHA1

844d1f88844996fc3fc46cfa2e9806e5daf13326
SHA256

ef4bddcebf517563f2e0d1791557c3757950e79b3e33fa786a203c1182dca768
SHA512

777c50c142c57ed3eed0881607171bb03ca0eae329df17288af3d39ed6643e345b5e8c0544350aec9216143baf50e63b5dd49cae06399ff07e4e11340fde282a
SSDEEP

49152:BHp1bPiRwA0aPdc1kEvoe6txJ6Wf7XzoY2:16JahortxJlD

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  ef4bddcebf517563f2e0d1791557c3757950e79b3e33fa786a203c1182dca768
- Size
  
  2.3MB
- MD5
  
  700be8dd95ea48a80417ad96c6f5f8d6
- SHA1
  
  844d1f88844996fc3fc46cfa2e9806e5daf13326
- SHA256
  
  ef4bddcebf517563f2e0d1791557c3757950e79b3e33fa786a203c1182dca768
- SHA512
  
  777c50c142c57ed3eed0881607171bb03ca0eae329df17288af3d39ed6643e345b5e8c0544350aec9216143baf50e63b5dd49cae06399ff07e4e11340fde282a
- SSDEEP
  
  49152:BHp1bPiRwA0aPdc1kEvoe6txJ6Wf7XzoY2:16JahortxJlD
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops Chrome extension
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer