f439b21dea1db186cafa2673186ecba538cbebb5a2cb50439866e6c261bc44e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f439b21dea1db186cafa2673186ecba538cbebb5a2cb50439866e6c261bc44e5
Size

1.0MB
Sample

221204-nl39dshh2w
MD5

35b543ee46fb9e4d85cf1cf89616e272
SHA1

f732409a5a46d103b8955bbd4335dddc37d63df5
SHA256

f439b21dea1db186cafa2673186ecba538cbebb5a2cb50439866e6c261bc44e5
SHA512

9ccf41ba3f66594125cbbe76ba2d6cd9cec7438d15f419e5854f00b28ea5d17176ecd43775aef927b974129e2f3fb39aad8461f261d6b949e44928e5889a71a2
SSDEEP

24576:StPzsaPxK4VBF6NHLsn5BB1nxdM6y9N1Fu0hyNlG:woaPxNF6ent1x+6y9Ntgo

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  f439b21dea1db186cafa2673186ecba538cbebb5a2cb50439866e6c261bc44e5
- Size
  
  1.0MB
- MD5
  
  35b543ee46fb9e4d85cf1cf89616e272
- SHA1
  
  f732409a5a46d103b8955bbd4335dddc37d63df5
- SHA256
  
  f439b21dea1db186cafa2673186ecba538cbebb5a2cb50439866e6c261bc44e5
- SHA512
  
  9ccf41ba3f66594125cbbe76ba2d6cd9cec7438d15f419e5854f00b28ea5d17176ecd43775aef927b974129e2f3fb39aad8461f261d6b949e44928e5889a71a2
- SSDEEP
  
  24576:StPzsaPxK4VBF6NHLsn5BB1nxdM6y9N1Fu0hyNlG:woaPxNF6ent1x+6y9Ntgo
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2