35706e99ef9f14656dca123cb49c5aae51b217f6624273de9c2df33a7e0d7966 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35706e99ef9f14656dca123cb49c5aae51b217f6624273de9c2df33a7e0d7966
Size

300KB
Sample

230215-tgwlmscd7z
MD5

72cc0907cf302788c9e088e77165720b
SHA1

fe5699c01dab5e7e474630ccf2e636b0985a61dd
SHA256

35706e99ef9f14656dca123cb49c5aae51b217f6624273de9c2df33a7e0d7966
SHA512

548d4a3952627ad4eff5ccd37f7ccf7e36eed6f31f06df253c80a7060599afa62a8b174be8390ac66cee19f3e4de52fa422322570957d32a3568526b995062b1
SSDEEP

6144:Tsiawcbx9d2lr73SE6hgr+4GpzKYg3EXPUX8m91MxCvnrxycSIK:Tsr3bx9d2R7F6hI+XPgyqd91MkgrI

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  35706e99ef9f14656dca123cb49c5aae51b217f6624273de9c2df33a7e0d7966
- Size
  
  300KB
- MD5
  
  72cc0907cf302788c9e088e77165720b
- SHA1
  
  fe5699c01dab5e7e474630ccf2e636b0985a61dd
- SHA256
  
  35706e99ef9f14656dca123cb49c5aae51b217f6624273de9c2df33a7e0d7966
- SHA512
  
  548d4a3952627ad4eff5ccd37f7ccf7e36eed6f31f06df253c80a7060599afa62a8b174be8390ac66cee19f3e4de52fa422322570957d32a3568526b995062b1
- SSDEEP
  
  6144:Tsiawcbx9d2lr73SE6hgr+4GpzKYg3EXPUX8m91MxCvnrxycSIK:Tsr3bx9d2R7F6hI+XPgyqd91MkgrI
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer