d609fde25562739207bae148c79708b02e3186b1adf578f139c6f168c2e515b7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d609fde25562739207bae148c79708b02e3186b1adf578f139c6f168c2e515b7
Size

1001KB
Sample

221126-2phczsah27
MD5

ea00b63f8e9f7d52dce6481bf9c3ab50
SHA1

523d595d6661341cb9ecb42dae23b5097ef3a750
SHA256

d609fde25562739207bae148c79708b02e3186b1adf578f139c6f168c2e515b7
SHA512

f18370560d3b836223604fb581f204d880b59ed071a8586e669b4416e273b57a81d1c35eee3192e74af04b23745eda2d6f0b18c5e488e09b9d13e21ea9b3cfb0
SSDEEP

12288:1KQrDcGrLKDoQ8NrWO6waqY7xxdmJyE5cU7NGhPU7/x8KJBlo3S4XT6jUoa21tp1:9YkOsQmWwaqLcCNYPi5vlqXAtX

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  d609fde25562739207bae148c79708b02e3186b1adf578f139c6f168c2e515b7
- Size
  
  1001KB
- MD5
  
  ea00b63f8e9f7d52dce6481bf9c3ab50
- SHA1
  
  523d595d6661341cb9ecb42dae23b5097ef3a750
- SHA256
  
  d609fde25562739207bae148c79708b02e3186b1adf578f139c6f168c2e515b7
- SHA512
  
  f18370560d3b836223604fb581f204d880b59ed071a8586e669b4416e273b57a81d1c35eee3192e74af04b23745eda2d6f0b18c5e488e09b9d13e21ea9b3cfb0
- SSDEEP
  
  12288:1KQrDcGrLKDoQ8NrWO6waqY7xxdmJyE5cU7NGhPU7/x8KJBlo3S4XT6jUoa21tp1:9YkOsQmWwaqLcCNYPi5vlqXAtX
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2