2bef228a837f3d485462eb8dacd7c04833219ee77f45b0af0ca938b57f45a389 | Triage

Sharing

General

Target

2bef228a837f3d485462eb8dacd7c04833219ee77f45b0af0ca938b57f45a389
Size

1.0MB
Sample

221201-gshgyaba85
MD5

54f4e983d596ad5487f2e3e0c1456f69
SHA1

7b22bf420ab71e14c7ad3825a093182c487285f5
SHA256

2bef228a837f3d485462eb8dacd7c04833219ee77f45b0af0ca938b57f45a389
SHA512

7c2f209a2190447e6e8102bc85a75a1359db189646a996ac3c305cbea5112657a6493961eef49f71584cdfcf873942dd4538adfd27afb60170b268e97e3165d8
SSDEEP

24576:OB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNtmQ:OOgWe+EYmEaoNP

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  2bef228a837f3d485462eb8dacd7c04833219ee77f45b0af0ca938b57f45a389
- Size
  
  1.0MB
- MD5
  
  54f4e983d596ad5487f2e3e0c1456f69
- SHA1
  
  7b22bf420ab71e14c7ad3825a093182c487285f5
- SHA256
  
  2bef228a837f3d485462eb8dacd7c04833219ee77f45b0af0ca938b57f45a389
- SHA512
  
  7c2f209a2190447e6e8102bc85a75a1359db189646a996ac3c305cbea5112657a6493961eef49f71584cdfcf873942dd4538adfd27afb60170b268e97e3165d8
- SSDEEP
  
  24576:OB8+mu4DXEz/XVsR0FJc78OhJBgRPflYm8CcP2FRGmbl+aoNtmQ:OOgWe+EYmEaoNP
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2