47a40add511868171afab04d336c6120be951799b6230fdbd581e6469e1a088e | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.GenericKDZ.94141.18296.16191.exe
Size

2.9MB
Sample

221212-p7gsysea9x
MD5

b26439eb7f5e2a7f1e2dabcfa8e3a7b1
SHA1

4c4ca12b90e83e563408557e028580dd43b56975
SHA256

47a40add511868171afab04d336c6120be951799b6230fdbd581e6469e1a088e
SHA512

4d6fedbafd7f6ca7b0a3b9bf0162cd1d607098e82e474cca971fd828f1d0d4c9a1a00811583abd11d93b76f39972abbe7e6fae6b633c0062befc3d93612b0a5f
SSDEEP

49152:EW32/5cuXfOG+CwXxDebqytiJCaLsL6M8Aoek1d:anXWRxDQqCLd8AK

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.GenericKDZ.94141.18296.16191.exe
- Size
  
  2.9MB
- MD5
  
  b26439eb7f5e2a7f1e2dabcfa8e3a7b1
- SHA1
  
  4c4ca12b90e83e563408557e028580dd43b56975
- SHA256
  
  47a40add511868171afab04d336c6120be951799b6230fdbd581e6469e1a088e
- SHA512
  
  4d6fedbafd7f6ca7b0a3b9bf0162cd1d607098e82e474cca971fd828f1d0d4c9a1a00811583abd11d93b76f39972abbe7e6fae6b633c0062befc3d93612b0a5f
- SSDEEP
  
  49152:EW32/5cuXfOG+CwXxDebqytiJCaLsL6M8Aoek1d:anXWRxDQqCLd8AK
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2