9d2211ec3a834c4c727d1910460d97b5bd864b4bb9a58fb73dfbf432cb0f342c | Triage

Sharing

General

Target

9d2211ec3a834c4c727d1910460d97b5bd864b4bb9a58fb73dfbf432cb0f342c
Size

983KB
Sample

221127-cbvzgsfb7z
MD5

560880c37e770ce5b381ee7488f7fa87
SHA1

87f1fd19ef1d3f163739f6ae687039b40efdff83
SHA256

9d2211ec3a834c4c727d1910460d97b5bd864b4bb9a58fb73dfbf432cb0f342c
SHA512

62c007e0e17f95487dfb2b5f81f2fe57f508ca9930192bee39babc296205d130141388f7ea2ac7e76a093335146cb5d8c238fbf3848ae31712a658f5be8be66a
SSDEEP

12288:ldF0K5feXW63uv53WkHbFaFk5d7P92ITL0+K6H0XpJO5blv2Sq7vun5++mKsH8Sz:fFZUfeJ7YI8+K6H0Zspvsvu5oTGBA

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  9d2211ec3a834c4c727d1910460d97b5bd864b4bb9a58fb73dfbf432cb0f342c
- Size
  
  983KB
- MD5
  
  560880c37e770ce5b381ee7488f7fa87
- SHA1
  
  87f1fd19ef1d3f163739f6ae687039b40efdff83
- SHA256
  
  9d2211ec3a834c4c727d1910460d97b5bd864b4bb9a58fb73dfbf432cb0f342c
- SHA512
  
  62c007e0e17f95487dfb2b5f81f2fe57f508ca9930192bee39babc296205d130141388f7ea2ac7e76a093335146cb5d8c238fbf3848ae31712a658f5be8be66a
- SSDEEP
  
  12288:ldF0K5feXW63uv53WkHbFaFk5d7P92ITL0+K6H0XpJO5blv2Sq7vun5++mKsH8Sz:fFZUfeJ7YI8+K6H0Zspvsvu5oTGBA
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2