807a6dbd536b57301ba2e6ad2a38bae181357efbb1ebc390dc60ac33453c2e5b | Triage

Sharing

General

Target

807a6dbd536b57301ba2e6ad2a38bae181357efbb1ebc390dc60ac33453c2e5b
Size

402KB
Sample

221227-1wnynsge73
MD5

db809a02e96d4dbb7b0df276f76cdf22
SHA1

14d1d1eb4ef62ef0e81d69fa50c882ac30d9a172
SHA256

807a6dbd536b57301ba2e6ad2a38bae181357efbb1ebc390dc60ac33453c2e5b
SHA512

41be83715b5fa06310f6b057e3539b84704f2d43560153e0e3eb2689c44f0a7f28302b6e92905f9c91f2abb0c84a0ed61f47c0ef7f8082c8ad25a38e2724976b
SSDEEP

6144:vQLxZeUh3dkrGw8l0phYgiMznnHRViy5C19UZdLaYon5Jk4eROw:oFZ53dkrzxER0nnniyvdin5JF

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  807a6dbd536b57301ba2e6ad2a38bae181357efbb1ebc390dc60ac33453c2e5b
- Size
  
  402KB
- MD5
  
  db809a02e96d4dbb7b0df276f76cdf22
- SHA1
  
  14d1d1eb4ef62ef0e81d69fa50c882ac30d9a172
- SHA256
  
  807a6dbd536b57301ba2e6ad2a38bae181357efbb1ebc390dc60ac33453c2e5b
- SHA512
  
  41be83715b5fa06310f6b057e3539b84704f2d43560153e0e3eb2689c44f0a7f28302b6e92905f9c91f2abb0c84a0ed61f47c0ef7f8082c8ad25a38e2724976b
- SSDEEP
  
  6144:vQLxZeUh3dkrGw8l0phYgiMznnHRViy5C19UZdLaYon5Jk4eROw:oFZ53dkrzxER0nnniyvdin5JF
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer