c1e50eb4f9481a25465187fa2625a27925582465d5fd7e83a3c8d53d1518d512 | Triage

Sharing

General

Target

c1e50eb4f9481a25465187fa2625a27925582465d5fd7e83a3c8d53d1518d512
Size

155KB
Sample

221205-jg2sjsdc9z
MD5

05859b2ef1b312ad5dfde295617b9386
SHA1

13d915e75e569343b00fa3bbe7c4867eedde1438
SHA256

c1e50eb4f9481a25465187fa2625a27925582465d5fd7e83a3c8d53d1518d512
SHA512

198593907ed03cb19f4428023a211fb35c3860dc1fde357542750ab61281df108d7fe2d85eb35897ff864631395fe1f1695b6d3d4795ebc0f87195ee9a420685
SSDEEP

3072:4S2SgK1F8axM1/6cWj4EqqDaxZss0mEHUIpQZh9h45VSjy:6SDr8axMhqLLDMdWnpQZh9h4SW

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  c1e50eb4f9481a25465187fa2625a27925582465d5fd7e83a3c8d53d1518d512
- Size
  
  155KB
- MD5
  
  05859b2ef1b312ad5dfde295617b9386
- SHA1
  
  13d915e75e569343b00fa3bbe7c4867eedde1438
- SHA256
  
  c1e50eb4f9481a25465187fa2625a27925582465d5fd7e83a3c8d53d1518d512
- SHA512
  
  198593907ed03cb19f4428023a211fb35c3860dc1fde357542750ab61281df108d7fe2d85eb35897ff864631395fe1f1695b6d3d4795ebc0f87195ee9a420685
- SSDEEP
  
  3072:4S2SgK1F8axM1/6cWj4EqqDaxZss0mEHUIpQZh9h45VSjy:6SDr8axMhqLLDMdWnpQZh9h4SW
Score

7^/10

spyware stealer
- Reads data files stored by FTP clients
  Tries to access configuration files associated with programs like FileZilla.
  spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2