amadey | 78edd4d43c88a72fb597719e580a54f566eb146d0b4ce9fc660063971c90adcf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78edd4d43c88a72fb597719e580a54f566eb146d0b4ce9fc660063971c90adcf
Size

126KB
Sample

221221-s7dcbace97
MD5

bfee01170eb2d9a9d881a27d3c590b21
SHA1

1fce13219189f12350427570cf3f00eced380978
SHA256

78edd4d43c88a72fb597719e580a54f566eb146d0b4ce9fc660063971c90adcf
SHA512

123bbf0f8d8c9b8d98e44f2a38041afb3cbba68d24564976a39a9143c85fe988b4645dd092957060f6498a399210a808edebd7d35a85495927ea4b0bb5f1883a
SSDEEP

3072:4x7pOYzBekPjs1QQYe4vHWSFlIjQqfOXEMaLXbWSTG9:4x7ZNhPjyYefBfOXDaTp

Score

10^/10

amadey collection spyware stealer

Malware Config

Targets

- Target
  
  78edd4d43c88a72fb597719e580a54f566eb146d0b4ce9fc660063971c90adcf
- Size
  
  126KB
- MD5
  
  bfee01170eb2d9a9d881a27d3c590b21
- SHA1
  
  1fce13219189f12350427570cf3f00eced380978
- SHA256
  
  78edd4d43c88a72fb597719e580a54f566eb146d0b4ce9fc660063971c90adcf
- SHA512
  
  123bbf0f8d8c9b8d98e44f2a38041afb3cbba68d24564976a39a9143c85fe988b4645dd092957060f6498a399210a808edebd7d35a85495927ea4b0bb5f1883a
- SSDEEP
  
  3072:4x7pOYzBekPjs1QQYe4vHWSFlIjQqfOXEMaLXbWSTG9:4x7ZNhPjyYefBfOXDaTp
Score

7^/10

collection spyware stealer
- Reads local data of messenger clients
  Infostealers often target stored data of messaging applications, which can include saved credentials and account information.
  spyware stealer
- Accesses Microsoft Outlook profiles
  collection
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectionspywarestealer