3d55fc3ed1c8b736d494b9478c73391e3e051a673f19631033dd67b6203ef22f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

build_230301_103133.exe
Size

1.3MB
Sample

230301-rd6w4aga41
MD5

380e55fad355c66b6cdfe0c3be796e7d
SHA1

e0dd90b8eb68c81176e93f15fd1fd5dbea3267a4
SHA256

3d55fc3ed1c8b736d494b9478c73391e3e051a673f19631033dd67b6203ef22f
SHA512

d07ed346a48909fcb2ceb782bd7d52b5e990a8ddc1ca0cf29e1cf738fd615062239a2e4753d6491b64a8d7a0e60327d8043f932b70a62bf25f1530ca580681d2
SSDEEP

12288:xmN1bLIYBeEfgWJDPNczOnWNTbn/ysbJRdPwQoXkI7e0MT5NOZoQyxaIEuaOuRBg:xmQ/EYuDw

Score

6^/10

spyware

Malware Config

Targets

- Target
  
  build_230301_103133.exe
- Size
  
  1.3MB
- MD5
  
  380e55fad355c66b6cdfe0c3be796e7d
- SHA1
  
  e0dd90b8eb68c81176e93f15fd1fd5dbea3267a4
- SHA256
  
  3d55fc3ed1c8b736d494b9478c73391e3e051a673f19631033dd67b6203ef22f
- SHA512
  
  d07ed346a48909fcb2ceb782bd7d52b5e990a8ddc1ca0cf29e1cf738fd615062239a2e4753d6491b64a8d7a0e60327d8043f932b70a62bf25f1530ca580681d2
- SSDEEP
  
  12288:xmN1bLIYBeEfgWJDPNczOnWNTbn/ysbJRdPwQoXkI7e0MT5NOZoQyxaIEuaOuRBg:xmQ/EYuDw
Score

6^/10

spyware
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2