20969119345a307fcc31106ab0266694f149c59ec2969e22fcd8332fc7e112a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20969119345a307fcc31106ab0266694f149c59ec2969e22fcd8332fc7e112a7
Size

1.0MB
Sample

221201-g2sn9sbg99
MD5

f3fb09b07e6ba3103d2a0a8b1b834a28
SHA1

bab43fb4d557b30550bc498098322220f08f6067
SHA256

20969119345a307fcc31106ab0266694f149c59ec2969e22fcd8332fc7e112a7
SHA512

4eee61b93b032ace9926b7e8e1bb6f805ad40c072bae19d5cb1d42a37981434d00fd94c68059cc315aa47f6ac12247ee9d33e3a086eb6f2ada43dfa54bc73425
SSDEEP

24576:hB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNt+u:hOgWe+EYmEaoNd

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  20969119345a307fcc31106ab0266694f149c59ec2969e22fcd8332fc7e112a7
- Size
  
  1.0MB
- MD5
  
  f3fb09b07e6ba3103d2a0a8b1b834a28
- SHA1
  
  bab43fb4d557b30550bc498098322220f08f6067
- SHA256
  
  20969119345a307fcc31106ab0266694f149c59ec2969e22fcd8332fc7e112a7
- SHA512
  
  4eee61b93b032ace9926b7e8e1bb6f805ad40c072bae19d5cb1d42a37981434d00fd94c68059cc315aa47f6ac12247ee9d33e3a086eb6f2ada43dfa54bc73425
- SSDEEP
  
  24576:hB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNt+u:hOgWe+EYmEaoNd
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2