93089288d095f8a84560523de596a926e965b5232cfb7456d47832360dce8aae | Triage

Sharing

General

Target

93089288d095f8a84560523de596a926e965b5232cfb7456d47832360dce8aae
Size

7.4MB
Sample

221228-avq4jaha47
MD5

d6869a8f3293087211bcf2206d78ab7f
SHA1

191da7f891d063e2ed8e967ab699f2633553e376
SHA256

93089288d095f8a84560523de596a926e965b5232cfb7456d47832360dce8aae
SHA512

50718ed49c829d4523c9ab942dfe4e4b5029a37ab1c5dc8c11096b3369848de82618b6661221dab2f95afa2c4bb0131b40d60bb9b77c60538de9cea06742e799
SSDEEP

196608:3EZ26Xd42Tcq+gxqJcKGar/Xk5RlixNzVHBY:cXm2Tcq+gxRKGsXk578Fa

Score

7^/10

collection spyware stealer

Malware Config

Targets

- Target
  
  93089288d095f8a84560523de596a926e965b5232cfb7456d47832360dce8aae
- Size
  
  7.4MB
- MD5
  
  d6869a8f3293087211bcf2206d78ab7f
- SHA1
  
  191da7f891d063e2ed8e967ab699f2633553e376
- SHA256
  
  93089288d095f8a84560523de596a926e965b5232cfb7456d47832360dce8aae
- SHA512
  
  50718ed49c829d4523c9ab942dfe4e4b5029a37ab1c5dc8c11096b3369848de82618b6661221dab2f95afa2c4bb0131b40d60bb9b77c60538de9cea06742e799
- SSDEEP
  
  196608:3EZ26Xd42Tcq+gxqJcKGar/Xk5RlixNzVHBY:cXm2Tcq+gxRKGsXk578Fa
Score

7^/10

collection spyware stealer
- Reads local data of messenger clients
  Infostealers often target stored data of messaging applications, which can include saved credentials and account information.
  spyware stealer
- Accesses Microsoft Outlook profiles
  collection
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectionspywarestealer