60b7991b2ef2d4afdba6c2494b76af02081460e3da164e36118da48c371c8065 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60b7991b2ef2d4afdba6c2494b76af02081460e3da164e36118da48c371c8065
Size

1.0MB
Sample

221201-3e8b4abg92
MD5

ee0109ecbd01d204d30b01bc306723dd
SHA1

97de68e827a92e0e497feab8a228a9fa6e3fb86f
SHA256

60b7991b2ef2d4afdba6c2494b76af02081460e3da164e36118da48c371c8065
SHA512

6cd71f215ce99623d655f02c078a80254d420fa8350b5575dfd88e73e747959dd6133c2de3c4b5f121a46c271af5b6baabb6f08f9bc8d2183cf595173f40f20f
SSDEEP

12288:Ys05EW5k2yfDLuLtc7YI4QcOTLCQhiv0KxjeU/S23v3aQ5buN3W5pKy:YT5EWU+LtKYIX3CTxJeU/vH5buNmGy

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  60b7991b2ef2d4afdba6c2494b76af02081460e3da164e36118da48c371c8065
- Size
  
  1.0MB
- MD5
  
  ee0109ecbd01d204d30b01bc306723dd
- SHA1
  
  97de68e827a92e0e497feab8a228a9fa6e3fb86f
- SHA256
  
  60b7991b2ef2d4afdba6c2494b76af02081460e3da164e36118da48c371c8065
- SHA512
  
  6cd71f215ce99623d655f02c078a80254d420fa8350b5575dfd88e73e747959dd6133c2de3c4b5f121a46c271af5b6baabb6f08f9bc8d2183cf595173f40f20f
- SSDEEP
  
  12288:Ys05EW5k2yfDLuLtc7YI4QcOTLCQhiv0KxjeU/S23v3aQ5buN3W5pKy:YT5EWU+LtKYIX3CTxJeU/vH5buNmGy
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2