4b65cb65a7e3f73b0c90c64cea9e1709437f7c307788765e8de4883860c178ca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b65cb65a7e3f73b0c90c64cea9e1709437f7c307788765e8de4883860c178ca
Size

1.0MB
Sample

221201-3ygcqadd78
MD5

7f149cd567c0d6f1029d3b5c8415fd47
SHA1

7ca639f29f31bf0984b57bc6c335b20cd91e2888
SHA256

4b65cb65a7e3f73b0c90c64cea9e1709437f7c307788765e8de4883860c178ca
SHA512

ed09c516fcc28fb4bd264a484ad0274b7354cfc2a93e19f6229435c069cabf67cdb31139f4814bc0681aeacf7bf109028d8be164b7cbd0642496e989210c990e
SSDEEP

12288:Rs05EW5k2yfDLuLtc7YI4QcOTLCQhiv0KxjeU/S23v3/Q5buN3W5pKR:RT5EWU+LtKYIX3CTxJeU/vY5buNmGR

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  4b65cb65a7e3f73b0c90c64cea9e1709437f7c307788765e8de4883860c178ca
- Size
  
  1.0MB
- MD5
  
  7f149cd567c0d6f1029d3b5c8415fd47
- SHA1
  
  7ca639f29f31bf0984b57bc6c335b20cd91e2888
- SHA256
  
  4b65cb65a7e3f73b0c90c64cea9e1709437f7c307788765e8de4883860c178ca
- SHA512
  
  ed09c516fcc28fb4bd264a484ad0274b7354cfc2a93e19f6229435c069cabf67cdb31139f4814bc0681aeacf7bf109028d8be164b7cbd0642496e989210c990e
- SSDEEP
  
  12288:Rs05EW5k2yfDLuLtc7YI4QcOTLCQhiv0KxjeU/S23v3/Q5buN3W5pKR:RT5EWU+LtKYIX3CTxJeU/vY5buNmGR
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2