5088b2c5548e2b5fe150018899062f5150ae57375641c739e7ba2eb16eb9a293 | Triage

Sharing

General

Target

5088b2c5548e2b5fe150018899062f5150ae57375641c739e7ba2eb16eb9a293
Size

402KB
Sample

221227-y978csbd5y
MD5

c55dbab764fd7ea4e2e0f8054069a0f0
SHA1

52b625b4dc0218464f4730458d3e658ab8353d79
SHA256

5088b2c5548e2b5fe150018899062f5150ae57375641c739e7ba2eb16eb9a293
SHA512

2346b7f2162fcf889a11be1dbabc8a40c97c0d9672766e19ad03d5d420efff003de436a6877a1521cab67a546ef5b3bc45c680af720843af98723a6f2b88c1f8
SSDEEP

6144:RqLySvpMxyibuCDZk/jefvrttO+scWrEprJ2AB9UZdLaYon5Jk4eROw:A2SRMxLbuCD2/jyRtSJrEz2din5JF

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  5088b2c5548e2b5fe150018899062f5150ae57375641c739e7ba2eb16eb9a293
- Size
  
  402KB
- MD5
  
  c55dbab764fd7ea4e2e0f8054069a0f0
- SHA1
  
  52b625b4dc0218464f4730458d3e658ab8353d79
- SHA256
  
  5088b2c5548e2b5fe150018899062f5150ae57375641c739e7ba2eb16eb9a293
- SHA512
  
  2346b7f2162fcf889a11be1dbabc8a40c97c0d9672766e19ad03d5d420efff003de436a6877a1521cab67a546ef5b3bc45c680af720843af98723a6f2b88c1f8
- SSDEEP
  
  6144:RqLySvpMxyibuCDZk/jefvrttO+scWrEprJ2AB9UZdLaYon5Jk4eROw:A2SRMxLbuCD2/jyRtSJrEz2din5JF
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer