8850c0886454e6ded9c475dab1376b1cb776a2edf04ea5a0dd388ab063c2bcfb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8850c0886454e6ded9c475dab1376b1cb776a2edf04ea5a0dd388ab063c2bcfb
Size

1.0MB
Sample

221201-cekb6adh97
MD5

b5d2b9b04bab0c38c9c81c775d6be618
SHA1

19de7c4ae974c50665c45097efffdaeed07a473b
SHA256

8850c0886454e6ded9c475dab1376b1cb776a2edf04ea5a0dd388ab063c2bcfb
SHA512

f991b69e901b458f5960667d510bb5760d309237ff663e92cfb7aa17a63d5cab22ee4cd28af55e7e5e7daf7b6d4877b91e8a9c29501df8c77d6dfd313bc42e9b
SSDEEP

24576:jB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNtcm:jOgWe+EYmEaoNH

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  8850c0886454e6ded9c475dab1376b1cb776a2edf04ea5a0dd388ab063c2bcfb
- Size
  
  1.0MB
- MD5
  
  b5d2b9b04bab0c38c9c81c775d6be618
- SHA1
  
  19de7c4ae974c50665c45097efffdaeed07a473b
- SHA256
  
  8850c0886454e6ded9c475dab1376b1cb776a2edf04ea5a0dd388ab063c2bcfb
- SHA512
  
  f991b69e901b458f5960667d510bb5760d309237ff663e92cfb7aa17a63d5cab22ee4cd28af55e7e5e7daf7b6d4877b91e8a9c29501df8c77d6dfd313bc42e9b
- SSDEEP
  
  24576:jB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNtcm:jOgWe+EYmEaoNH
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2