1a7cbdf5f49b935f673d41af598168227c79592a4461ed45e651adea90557337 | Triage

Sharing

General

Target

1a7cbdf5f49b935f673d41af598168227c79592a4461ed45e651adea90557337
Size

2.1MB
Sample

221128-r6ptaabe25
MD5

5e2e23a7685b9240b8310d1bd2720a2c
SHA1

2005430888f6e629d6dff5e50d67dd3e35764774
SHA256

1a7cbdf5f49b935f673d41af598168227c79592a4461ed45e651adea90557337
SHA512

d87aa235b94dfa47882f799959e9ecb22998b16905a87412e471983c6ce6cca580cdd4966edc8e4900270f5c955e6fe090d0eeea4c629079793f052442f2c960
SSDEEP

49152:OGIlkxEeFgBlo3Xn29FeXW6pBjMkb08EDJ7POOMlbpZ3d5UK3dvPNJl36d3SLATJ:ONlkSeFgBS1wkb0hVIossHsmUM

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  1a7cbdf5f49b935f673d41af598168227c79592a4461ed45e651adea90557337
- Size
  
  2.1MB
- MD5
  
  5e2e23a7685b9240b8310d1bd2720a2c
- SHA1
  
  2005430888f6e629d6dff5e50d67dd3e35764774
- SHA256
  
  1a7cbdf5f49b935f673d41af598168227c79592a4461ed45e651adea90557337
- SHA512
  
  d87aa235b94dfa47882f799959e9ecb22998b16905a87412e471983c6ce6cca580cdd4966edc8e4900270f5c955e6fe090d0eeea4c629079793f052442f2c960
- SSDEEP
  
  49152:OGIlkxEeFgBlo3Xn29FeXW6pBjMkb08EDJ7POOMlbpZ3d5UK3dvPNJl36d3SLATJ:ONlkSeFgBS1wkb0hVIossHsmUM
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2