ae7496bbbe4bd997374ae528523ee2c556eed837d98367d7e97d6ae7af742df1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae7496bbbe4bd997374ae528523ee2c556eed837d98367d7e97d6ae7af742df1
Size

201KB
Sample

221206-b2mkcsfe32
MD5

c47e9a9f92eb4f780ed361e101d570b9
SHA1

529ba4c416ef8ea795038434238255ea33c34cc1
SHA256

ae7496bbbe4bd997374ae528523ee2c556eed837d98367d7e97d6ae7af742df1
SHA512

44508d7dabddd2e6e393bfd95cf94d65a15ca4786b389a3b01220ef89ae226d659e892a5b9b56755d4abf8600cc303530e3b5d334038a404e9b19ae682e3aaf2
SSDEEP

3072:1xngmMy0K+UF6J+p7ndo3gL4PRDDJF6UPRVuWxkyotnNbQJVWZ46bkgzb1:/gmMy0K+UF6J+p7ndo3gL4PR/7JAHl

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  ae7496bbbe4bd997374ae528523ee2c556eed837d98367d7e97d6ae7af742df1
- Size
  
  201KB
- MD5
  
  c47e9a9f92eb4f780ed361e101d570b9
- SHA1
  
  529ba4c416ef8ea795038434238255ea33c34cc1
- SHA256
  
  ae7496bbbe4bd997374ae528523ee2c556eed837d98367d7e97d6ae7af742df1
- SHA512
  
  44508d7dabddd2e6e393bfd95cf94d65a15ca4786b389a3b01220ef89ae226d659e892a5b9b56755d4abf8600cc303530e3b5d334038a404e9b19ae682e3aaf2
- SSDEEP
  
  3072:1xngmMy0K+UF6J+p7ndo3gL4PRDDJF6UPRVuWxkyotnNbQJVWZ46bkgzb1:/gmMy0K+UF6J+p7ndo3gL4PR/7JAHl
Score

7^/10

spyware stealer
- Reads data files stored by FTP clients
  Tries to access configuration files associated with programs like FileZilla.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2