4d2e4c96a8c83f42b0c8c2594dffdb90cf6bf5014b9abc670994d16bffe01198 | Triage

Sharing

General

Target

task.exe
Size

1.4MB
Sample

230106-2ve5tacb74
MD5

bbe9cdd9dcdc504b406d119c014e62c6
SHA1

686387d6dba8800683dfb0d96bf66c17b10c0a34
SHA256

4d2e4c96a8c83f42b0c8c2594dffdb90cf6bf5014b9abc670994d16bffe01198
SHA512

eb21560ccf00fb8f66c121bb2e73d6a51a38592f673f60d273a68921a9f0bbf20b295767fecdb62ca6453cc7126ed0f8d5372dbb0bdee8ee0a3bbe2e88f9b4d9
SSDEEP

24576:a27mrhic6gvYbAKsy5Ulh3iXWl9557sK6X3ZO0GinMSvTNWfshnGmg/ykTPnewl5:anrhr/vAcWKv6X3o0GQN0s/g/ybW

Score

8^/10

evasion spyware stealer

Malware Config

Targets

- Target
  
  task.exe
- Size
  
  1.4MB
- MD5
  
  bbe9cdd9dcdc504b406d119c014e62c6
- SHA1
  
  686387d6dba8800683dfb0d96bf66c17b10c0a34
- SHA256
  
  4d2e4c96a8c83f42b0c8c2594dffdb90cf6bf5014b9abc670994d16bffe01198
- SHA512
  
  eb21560ccf00fb8f66c121bb2e73d6a51a38592f673f60d273a68921a9f0bbf20b295767fecdb62ca6453cc7126ed0f8d5372dbb0bdee8ee0a3bbe2e88f9b4d9
- SSDEEP
  
  24576:a27mrhic6gvYbAKsy5Ulh3iXWl9557sK6X3ZO0GinMSvTNWfshnGmg/ykTPnewl5:anrhr/vAcWKv6X3o0GQN0s/g/ybW
Score

8^/10

evasion spyware stealer
- Disables Task Manager via registry modification
  evasion
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealer