2d19e060c21a6c3341747449ef1876bc4870042a9527770372b42851c910f218 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d19e060c21a6c3341747449ef1876bc4870042a9527770372b42851c910f218
Size

1.0MB
Sample

221202-aprswaeh97
MD5

7692ef6978ab01be86297fbfdf2433e0
SHA1

e179ff462e48af993d901d1b1b9b88e8c30ae764
SHA256

2d19e060c21a6c3341747449ef1876bc4870042a9527770372b42851c910f218
SHA512

a44fd9aa8c945c500f8e3cf7240d6371848ead42172994cfacbc26a89c2e05d33b8b633f3a0ee8cb7bdedcafd115232e4744b1f9fa06b15e05f0e7f6d2296d38
SSDEEP

12288:Ws05EW5k2yfDLuLtc7YI4QcOTLCQhiv0KxjeU/S23v3XQ5buN3W5pKS:WT5EWU+LtKYIX3CTxJeU/vA5buNmGS

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  2d19e060c21a6c3341747449ef1876bc4870042a9527770372b42851c910f218
- Size
  
  1.0MB
- MD5
  
  7692ef6978ab01be86297fbfdf2433e0
- SHA1
  
  e179ff462e48af993d901d1b1b9b88e8c30ae764
- SHA256
  
  2d19e060c21a6c3341747449ef1876bc4870042a9527770372b42851c910f218
- SHA512
  
  a44fd9aa8c945c500f8e3cf7240d6371848ead42172994cfacbc26a89c2e05d33b8b633f3a0ee8cb7bdedcafd115232e4744b1f9fa06b15e05f0e7f6d2296d38
- SSDEEP
  
  12288:Ws05EW5k2yfDLuLtc7YI4QcOTLCQhiv0KxjeU/S23v3XQ5buN3W5pKS:WT5EWU+LtKYIX3CTxJeU/vA5buNmGS
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2