ade23541f184692a48034e4903a99a2ae26d6444fdc9f2f94cf722975faa6dbf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ade23541f184692a48034e4903a99a2ae26d6444fdc9f2f94cf722975faa6dbf
Size

184KB
Sample

221201-x96h4ade33
MD5

9defff7dd5a2f11ef576158e82597cc9
SHA1

b8d96ec2464c0bc2119dd0b9d3a24691b43a4717
SHA256

ade23541f184692a48034e4903a99a2ae26d6444fdc9f2f94cf722975faa6dbf
SHA512

c4434b77ccab692fbb4174db7dc94b7165f8a26cb8cc55643c1fe27adafaf2b69fc89e515c58d336b69852c2461c4b38b90e8f9ffcc1bbff2d9764253a73e505
SSDEEP

3072:dzev0RIuiDNvUHPe+qZvnquwwHq7cRZu3LdlUmggK11n:Y0LPeB9nmwKgRCpSlz

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  ade23541f184692a48034e4903a99a2ae26d6444fdc9f2f94cf722975faa6dbf
- Size
  
  184KB
- MD5
  
  9defff7dd5a2f11ef576158e82597cc9
- SHA1
  
  b8d96ec2464c0bc2119dd0b9d3a24691b43a4717
- SHA256
  
  ade23541f184692a48034e4903a99a2ae26d6444fdc9f2f94cf722975faa6dbf
- SHA512
  
  c4434b77ccab692fbb4174db7dc94b7165f8a26cb8cc55643c1fe27adafaf2b69fc89e515c58d336b69852c2461c4b38b90e8f9ffcc1bbff2d9764253a73e505
- SSDEEP
  
  3072:dzev0RIuiDNvUHPe+qZvnquwwHq7cRZu3LdlUmggK11n:Y0LPeB9nmwKgRCpSlz
Score

7^/10

discovery spyware stealer
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2