1b015e147a873d37980fd5c2bda4bc367ab04ac6b8b77477e3703c28bbd6b60c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b015e147a873d37980fd5c2bda4bc367ab04ac6b8b77477e3703c28bbd6b60c
Size

1.0MB
Sample

221129-mmglcadh6v
MD5

7b50c76526ed7d5b5edb879bb2707f0a
SHA1

46d4b0d97360c455f58e5223de76ca567bf43293
SHA256

1b015e147a873d37980fd5c2bda4bc367ab04ac6b8b77477e3703c28bbd6b60c
SHA512

d57ae8458b658587840cc87769818c853a7592e678ce2d2d223ffe693112bd860f8cefa6e5ea979aa977a35580de8dc495b81bf4c37086f5c3ea2acc780cd7e3
SSDEEP

24576:gB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNtop:gOgWe+EYmEaoNQ

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  1b015e147a873d37980fd5c2bda4bc367ab04ac6b8b77477e3703c28bbd6b60c
- Size
  
  1.0MB
- MD5
  
  7b50c76526ed7d5b5edb879bb2707f0a
- SHA1
  
  46d4b0d97360c455f58e5223de76ca567bf43293
- SHA256
  
  1b015e147a873d37980fd5c2bda4bc367ab04ac6b8b77477e3703c28bbd6b60c
- SHA512
  
  d57ae8458b658587840cc87769818c853a7592e678ce2d2d223ffe693112bd860f8cefa6e5ea979aa977a35580de8dc495b81bf4c37086f5c3ea2acc780cd7e3
- SSDEEP
  
  24576:gB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNtop:gOgWe+EYmEaoNQ
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2