0aea38d4ef933afeb4104f1487db1f4181db4817c4d1c7fead9b3577462380cb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0aea38d4ef933afeb4104f1487db1f4181db4817c4d1c7fead9b3577462380cb
Size

1.0MB
Sample

221201-hjsf8agh21
MD5

53d318602bafa02cc5ac7af7b455c17c
SHA1

935a1b6a5ca8ed29160b76edd81f298a8680065e
SHA256

0aea38d4ef933afeb4104f1487db1f4181db4817c4d1c7fead9b3577462380cb
SHA512

df908c44529486318c98a859ebcdad8ae10e3e3a0f5a94e48e1d9ec7388e1e7396948bf7685b71bbf1f04cc2e5aaa19e4f277ccfe609fd70c66fd7198e1a456e
SSDEEP

24576:T95uqjWw1f0QCp4iUTXOkP0IifXXa1+sNsuqYYnI5q:54j+f0Q+4i2OkP0I8Xe+s9qxIM

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  0aea38d4ef933afeb4104f1487db1f4181db4817c4d1c7fead9b3577462380cb
- Size
  
  1.0MB
- MD5
  
  53d318602bafa02cc5ac7af7b455c17c
- SHA1
  
  935a1b6a5ca8ed29160b76edd81f298a8680065e
- SHA256
  
  0aea38d4ef933afeb4104f1487db1f4181db4817c4d1c7fead9b3577462380cb
- SHA512
  
  df908c44529486318c98a859ebcdad8ae10e3e3a0f5a94e48e1d9ec7388e1e7396948bf7685b71bbf1f04cc2e5aaa19e4f277ccfe609fd70c66fd7198e1a456e
- SSDEEP
  
  24576:T95uqjWw1f0QCp4iUTXOkP0IifXXa1+sNsuqYYnI5q:54j+f0Q+4i2OkP0I8Xe+s9qxIM
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2