fcabe524c56ca0d26b879bbcb6766c90bbcac6ce264f8218b1536b4a363ab46b | Triage

Sharing

General

Target

fcabe524c56ca0d26b879bbcb6766c90bbcac6ce264f8218b1536b4a363ab46b
Size

200KB
Sample

221205-t6mp2agd59
MD5

4d2fd4f65f3421a7bc737143f735926a
SHA1

633bb2fe8f36c39673f053a85f44d59a5998d46e
SHA256

fcabe524c56ca0d26b879bbcb6766c90bbcac6ce264f8218b1536b4a363ab46b
SHA512

626522f0cf0522d9c9f677d3be2167fcd0685335fc61da4d48d2a255ea2695d590d999b7574a926cb9116d478c131427b65638010bc9e0001072a42052f865ef
SSDEEP

3072:HprbTNB1WDuJB8wZ4SraolOYLoO6cq6rRGBVnGupb0zVCSf+g:5bTNCcFaoAYLFzroBI8wR

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  fcabe524c56ca0d26b879bbcb6766c90bbcac6ce264f8218b1536b4a363ab46b
- Size
  
  200KB
- MD5
  
  4d2fd4f65f3421a7bc737143f735926a
- SHA1
  
  633bb2fe8f36c39673f053a85f44d59a5998d46e
- SHA256
  
  fcabe524c56ca0d26b879bbcb6766c90bbcac6ce264f8218b1536b4a363ab46b
- SHA512
  
  626522f0cf0522d9c9f677d3be2167fcd0685335fc61da4d48d2a255ea2695d590d999b7574a926cb9116d478c131427b65638010bc9e0001072a42052f865ef
- SSDEEP
  
  3072:HprbTNB1WDuJB8wZ4SraolOYLoO6cq6rRGBVnGupb0zVCSf+g:5bTNCcFaoAYLFzroBI8wR
Score

8^/10

spyware stealer
- Executes dropped EXE
- Reads local data of messenger clients
  Infostealers often target stored data of messaging applications, which can include saved credentials and account information.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2