0bb6e04cf431c2c2eac335a1292e8693b70b5538767a99089fe4913b48a8af29 | Triage

Sharing

General

Target

0bb6e04cf431c2c2eac335a1292e8693b70b5538767a99089fe4913b48a8af29
Size

1.0MB
Sample

221129-m2fmlacc54
MD5

5e2857c3cc24f6529aa9bc293be4cf22
SHA1

587d038e60354faa8fc30c96ecc2995485a212b2
SHA256

0bb6e04cf431c2c2eac335a1292e8693b70b5538767a99089fe4913b48a8af29
SHA512

4429cd72cf7cfd642b920260212de3fa205f55ddd61ba73f6296b9a02d1bccc7a75151d854905a3a1361813d0829e0d18cbfe9c5ef6fd83cfe25cc3c0227065e
SSDEEP

24576:HB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNt2g:HOgWe+EYmEaoNj

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  0bb6e04cf431c2c2eac335a1292e8693b70b5538767a99089fe4913b48a8af29
- Size
  
  1.0MB
- MD5
  
  5e2857c3cc24f6529aa9bc293be4cf22
- SHA1
  
  587d038e60354faa8fc30c96ecc2995485a212b2
- SHA256
  
  0bb6e04cf431c2c2eac335a1292e8693b70b5538767a99089fe4913b48a8af29
- SHA512
  
  4429cd72cf7cfd642b920260212de3fa205f55ddd61ba73f6296b9a02d1bccc7a75151d854905a3a1361813d0829e0d18cbfe9c5ef6fd83cfe25cc3c0227065e
- SSDEEP
  
  24576:HB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNt2g:HOgWe+EYmEaoNj
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2