d0977ff7226779659088c98af214a31d07384b882aa0bb31d1d637c8b9c8df53 | Triage

Sharing

General

Target

d0977ff7226779659088c98af214a31d07384b882aa0bb31d1d637c8b9c8df53
Size

1.0MB
Sample

221203-ptbd1sba27
MD5

cac9b31fe4dfa04dbb8fe3da3e6f15bb
SHA1

99f119ffc853d807ee0e99bdf89252ff6aeaef07
SHA256

d0977ff7226779659088c98af214a31d07384b882aa0bb31d1d637c8b9c8df53
SHA512

2ed373420b9468d8519b05a53a331d35023425c25955b77420fcfaa8f251548a8246bae440f007882ea007c6e094a09001a23222f5da119d82c1071a3cf0c024
SSDEEP

12288:ljWtudPf4ddoOVmFf1WiX4SjTHM/WDde2AD34QvUzG08aKXeLOp2YukCK2fGpN:ljWtK6dofJ1WiXgIQf0yXeypfh7d

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  d0977ff7226779659088c98af214a31d07384b882aa0bb31d1d637c8b9c8df53
- Size
  
  1.0MB
- MD5
  
  cac9b31fe4dfa04dbb8fe3da3e6f15bb
- SHA1
  
  99f119ffc853d807ee0e99bdf89252ff6aeaef07
- SHA256
  
  d0977ff7226779659088c98af214a31d07384b882aa0bb31d1d637c8b9c8df53
- SHA512
  
  2ed373420b9468d8519b05a53a331d35023425c25955b77420fcfaa8f251548a8246bae440f007882ea007c6e094a09001a23222f5da119d82c1071a3cf0c024
- SSDEEP
  
  12288:ljWtudPf4ddoOVmFf1WiX4SjTHM/WDde2AD34QvUzG08aKXeLOp2YukCK2fGpN:ljWtK6dofJ1WiXgIQf0yXeypfh7d
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2