30570f1bc186e7ed9d46ac01aebde9300faf1ee4b6884a004e4e0fd8e2f11d59 | Triage

Sharing

General

Target

MW1.exe
Size

49KB
Sample

230111-khr56sbf48
MD5

a193637649d17718e7a3b69d5eaa608e
SHA1

ab325d5e499fe12c184ccec5537690ab0cba9fd8
SHA256

30570f1bc186e7ed9d46ac01aebde9300faf1ee4b6884a004e4e0fd8e2f11d59
SHA512

fbbb21526c2813b9eb6e6b9be59b38ad8a71269f425793e57c5789a4ad63d6ebe68bdbea790f39a499e584c0bae0256bd4ae80ea34ad9806f918aaaa09d72c2e
SSDEEP

768:h5EEmRla+Ig3yS+oHsiLwrH5qtJDGUl0Uf/gSoxCAZMDO6eg:h8a+eSAi8H0tJD2UfEWJ

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  MW1.exe
- Size
  
  49KB
- MD5
  
  a193637649d17718e7a3b69d5eaa608e
- SHA1
  
  ab325d5e499fe12c184ccec5537690ab0cba9fd8
- SHA256
  
  30570f1bc186e7ed9d46ac01aebde9300faf1ee4b6884a004e4e0fd8e2f11d59
- SHA512
  
  fbbb21526c2813b9eb6e6b9be59b38ad8a71269f425793e57c5789a4ad63d6ebe68bdbea790f39a499e584c0bae0256bd4ae80ea34ad9806f918aaaa09d72c2e
- SSDEEP
  
  768:h5EEmRla+Ig3yS+oHsiLwrH5qtJDGUl0Uf/gSoxCAZMDO6eg:h8a+eSAi8H0tJD2UfEWJ
Score

7^/10

spyware stealer
- Drops startup file
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2