8f2bfb747d0c9bf404e7f3784a25ab4b89e802725447ec6570f3c5e649dcdf54 | Triage

Sharing

General

Target

8f2bfb747d0c9bf404e7f3784a25ab4b89e802725447ec6570f3c5e649dcdf54
Size

102KB
Sample

221207-ecby4scd59
MD5

01f3163740b37e688431b7f04d361a7f
SHA1

3e0f3f5d752a920c07c242c6ab80b6ad2cc4c9b8
SHA256

8f2bfb747d0c9bf404e7f3784a25ab4b89e802725447ec6570f3c5e649dcdf54
SHA512

716eb49f6492666ffd240095ab4e4822ad01b8cc59e1e1036f0a5c7cf97fcd54075f93f7a8108d132f777f2aa838c7f114cb2f8d832e1d6486da4460b29a7335
SSDEEP

3072:WnilMfONuXw6RuNDAsnHQA+Xk+jmL9lMg76t8:wilMmGwdAsHQPkb9l28

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  8f2bfb747d0c9bf404e7f3784a25ab4b89e802725447ec6570f3c5e649dcdf54
- Size
  
  102KB
- MD5
  
  01f3163740b37e688431b7f04d361a7f
- SHA1
  
  3e0f3f5d752a920c07c242c6ab80b6ad2cc4c9b8
- SHA256
  
  8f2bfb747d0c9bf404e7f3784a25ab4b89e802725447ec6570f3c5e649dcdf54
- SHA512
  
  716eb49f6492666ffd240095ab4e4822ad01b8cc59e1e1036f0a5c7cf97fcd54075f93f7a8108d132f777f2aa838c7f114cb2f8d832e1d6486da4460b29a7335
- SSDEEP
  
  3072:WnilMfONuXw6RuNDAsnHQA+Xk+jmL9lMg76t8:wilMmGwdAsHQPkb9l28
Score

8^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2