b29246de781e2ef77482e70e484592821d80eeb8609761d91c68358573f51978 | Triage

Sharing

General

Target

b29246de781e2ef77482e70e484592821d80eeb8609761d91c68358573f51978
Size

348KB
Sample

221222-aa4h5agg6x
MD5

eed4991ad927a248f11a89c6ed94dc7a
SHA1

8e0d2caf1c95149cd29421eeddda38ab6c033ef6
SHA256

b29246de781e2ef77482e70e484592821d80eeb8609761d91c68358573f51978
SHA512

4958664c43ab4bc76640b6a88b1a27430bd1306033b9ec7f3f0f9e67f319c005123ac82e9ef5e21c994ae2f7bdee9046c87bb323d0f55b7ab6b73b530f1ec9bb
SSDEEP

6144:bT4LtImgCGfk1uuiI5Pe8WpBft5652q2W85v1AXeRu4:bcaSGf6XlWXFK2qA1Au8

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  b29246de781e2ef77482e70e484592821d80eeb8609761d91c68358573f51978
- Size
  
  348KB
- MD5
  
  eed4991ad927a248f11a89c6ed94dc7a
- SHA1
  
  8e0d2caf1c95149cd29421eeddda38ab6c033ef6
- SHA256
  
  b29246de781e2ef77482e70e484592821d80eeb8609761d91c68358573f51978
- SHA512
  
  4958664c43ab4bc76640b6a88b1a27430bd1306033b9ec7f3f0f9e67f319c005123ac82e9ef5e21c994ae2f7bdee9046c87bb323d0f55b7ab6b73b530f1ec9bb
- SSDEEP
  
  6144:bT4LtImgCGfk1uuiI5Pe8WpBft5652q2W85v1AXeRu4:bcaSGf6XlWXFK2qA1Au8
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer