ace89c38bbd48ea3dba8ab017cdd66423d88b86e4c3f03f7f727a29a8b90a398 | Triage

Sharing

General

Target

ace89c38bbd48ea3dba8ab017cdd66423d88b86e4c3f03f7f727a29a8b90a398
Size

746KB
Sample

221128-h71shaah8x
MD5

4e6154324e68d1bfc386907b9c522d03
SHA1

590bfaf67662a5aede2f56d8bd85a5b52a4b2766
SHA256

ace89c38bbd48ea3dba8ab017cdd66423d88b86e4c3f03f7f727a29a8b90a398
SHA512

abc34604e04ddf826dd590ed98ea083bff3db39cbdb89c2a933884217d301af6b4579e5f9d417c70132977d7a42db5deb2c8dec57549b0c75b150c6ad0ed5ef9
SSDEEP

12288:REiQd8h2mGiP6so1kAbXz3AW9i+yYqcqJqqtBRGhbkCooPr1YhUAtw:Ruq8uCso1keXzQUqcqrtehkCo/htw

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  ace89c38bbd48ea3dba8ab017cdd66423d88b86e4c3f03f7f727a29a8b90a398
- Size
  
  746KB
- MD5
  
  4e6154324e68d1bfc386907b9c522d03
- SHA1
  
  590bfaf67662a5aede2f56d8bd85a5b52a4b2766
- SHA256
  
  ace89c38bbd48ea3dba8ab017cdd66423d88b86e4c3f03f7f727a29a8b90a398
- SHA512
  
  abc34604e04ddf826dd590ed98ea083bff3db39cbdb89c2a933884217d301af6b4579e5f9d417c70132977d7a42db5deb2c8dec57549b0c75b150c6ad0ed5ef9
- SSDEEP
  
  12288:REiQd8h2mGiP6so1kAbXz3AW9i+yYqcqJqqtBRGhbkCooPr1YhUAtw:Ruq8uCso1keXzQUqcqrtehkCo/htw
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2