cf773b582ab5d60764e7274240babb5c65c186703215e120334d78c7c765d782 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf773b582ab5d60764e7274240babb5c65c186703215e120334d78c7c765d782
Size

104KB
Sample

221129-vyk2xaaa83
MD5

105bfe6b2c3105d292586ad60f636b5e
SHA1

7ac5d7882f91691f6e16eeb98125e49bf7516e7a
SHA256

cf773b582ab5d60764e7274240babb5c65c186703215e120334d78c7c765d782
SHA512

597323fca2b33358b88d37068cf5d8663c324bc4689fda686cad8a3d6e3ffa75a35affd42782b966caf610c32f3690e9c2e2328d8da5cea532b0fd43ea9e7c58
SSDEEP

3072:m11111q111/RnWLfFB7L/U11111f111IhtSSiKzm+k7CtTwBr6O:jcPLnt5dp1lUr

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  cf773b582ab5d60764e7274240babb5c65c186703215e120334d78c7c765d782
- Size
  
  104KB
- MD5
  
  105bfe6b2c3105d292586ad60f636b5e
- SHA1
  
  7ac5d7882f91691f6e16eeb98125e49bf7516e7a
- SHA256
  
  cf773b582ab5d60764e7274240babb5c65c186703215e120334d78c7c765d782
- SHA512
  
  597323fca2b33358b88d37068cf5d8663c324bc4689fda686cad8a3d6e3ffa75a35affd42782b966caf610c32f3690e9c2e2328d8da5cea532b0fd43ea9e7c58
- SSDEEP
  
  3072:m11111q111/RnWLfFB7L/U11111f111IhtSSiKzm+k7CtTwBr6O:jcPLnt5dp1lUr
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2