3c76cfb4b3d6c57f0dd30bd119d6b503db6e7df4162c9c762711e1240093db0b | Triage

Sharing

General

Target

57871aba4eb917f6fbc84e3817b464f17c0569d3
Size

17.8MB
Sample

230103-a4yvqsgf84
MD5

a1be1b8923f4ee12ce80cd158e6077bd
SHA1

57871aba4eb917f6fbc84e3817b464f17c0569d3
SHA256

3c76cfb4b3d6c57f0dd30bd119d6b503db6e7df4162c9c762711e1240093db0b
SHA512

54e769d1b9054d6e6b6eeadca4f2d0e4f39b837d3cc4aa10db8a98e9990aeb14febbf779636eab4e255b6455f292f17a533d84a707ae30e49162df3e92f97c4b
SSDEEP

393216:pxT1obI/bdQuslN/m3pql96dxI9BJHHZ46IqaUnJigR:pp1h/bdQu4KyQd61Z46Iqa0Jig

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  57871aba4eb917f6fbc84e3817b464f17c0569d3
- Size
  
  17.8MB
- MD5
  
  a1be1b8923f4ee12ce80cd158e6077bd
- SHA1
  
  57871aba4eb917f6fbc84e3817b464f17c0569d3
- SHA256
  
  3c76cfb4b3d6c57f0dd30bd119d6b503db6e7df4162c9c762711e1240093db0b
- SHA512
  
  54e769d1b9054d6e6b6eeadca4f2d0e4f39b837d3cc4aa10db8a98e9990aeb14febbf779636eab4e255b6455f292f17a533d84a707ae30e49162df3e92f97c4b
- SSDEEP
  
  393216:pxT1obI/bdQuslN/m3pql96dxI9BJHHZ46IqaUnJigR:pp1h/bdQu4KyQd61Z46Iqa0Jig
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2