36faf912b021d31faa5da57740d6fef7bf2c571a036e88a3adab55ee670e1752 | Triage

Sharing

General

Target

36faf912b021d31faa5da57740d6fef7bf2c571a036e88a3adab55ee670e1752
Size

1.0MB
Sample

221201-gfhl6saa48
MD5

0089a24e60ed9405fc5eaf52efb08418
SHA1

1f66c240172309f13289b183ef5a3d082c13282a
SHA256

36faf912b021d31faa5da57740d6fef7bf2c571a036e88a3adab55ee670e1752
SHA512

6d23b54298803783d1ce05e458a2ca08ba2fd019dd87a6e2d240b9324608c9999fae440472465fcd0bd0d6b17cdb959c00d4bb774d876f53f0b33f9ec0b04106
SSDEEP

24576:eB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNtNY:eOgWe+EYmEaoNw

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  36faf912b021d31faa5da57740d6fef7bf2c571a036e88a3adab55ee670e1752
- Size
  
  1.0MB
- MD5
  
  0089a24e60ed9405fc5eaf52efb08418
- SHA1
  
  1f66c240172309f13289b183ef5a3d082c13282a
- SHA256
  
  36faf912b021d31faa5da57740d6fef7bf2c571a036e88a3adab55ee670e1752
- SHA512
  
  6d23b54298803783d1ce05e458a2ca08ba2fd019dd87a6e2d240b9324608c9999fae440472465fcd0bd0d6b17cdb959c00d4bb774d876f53f0b33f9ec0b04106
- SSDEEP
  
  24576:eB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNtNY:eOgWe+EYmEaoNw
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2