70805738871f24f390c7b1e62e6b48bc4850399992d8b62bba3160550a0a3655 | Triage

Sharing

General

Target

SecuriteInfo.com.Variant.Tedy.308647.10806.1440.exe
Size

3.1MB
Sample

230308-ml4dqafe95
MD5

cd12cb026f70700b6d7d3122360c52e8
SHA1

b944514f2b56e27a9b5e26316f72fd9fec8aa94c
SHA256

70805738871f24f390c7b1e62e6b48bc4850399992d8b62bba3160550a0a3655
SHA512

6e9c3d683dbf9e16ae868ceb3078dffe330b7b81f50de204aab5d10d3b3baede98853b7f4f9fd2e871d6aa439716c9b6c0cef416478845954a7a08d8efe71f19
SSDEEP

49152:T5wh59b5nEKS6JKokJL06d4vD9GJjq/5qS3mynxdD4/7AQxDy:TUnuxBzd1IgYmoIfD

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Variant.Tedy.308647.10806.1440.exe
- Size
  
  3.1MB
- MD5
  
  cd12cb026f70700b6d7d3122360c52e8
- SHA1
  
  b944514f2b56e27a9b5e26316f72fd9fec8aa94c
- SHA256
  
  70805738871f24f390c7b1e62e6b48bc4850399992d8b62bba3160550a0a3655
- SHA512
  
  6e9c3d683dbf9e16ae868ceb3078dffe330b7b81f50de204aab5d10d3b3baede98853b7f4f9fd2e871d6aa439716c9b6c0cef416478845954a7a08d8efe71f19
- SSDEEP
  
  49152:T5wh59b5nEKS6JKokJL06d4vD9GJjq/5qS3mynxdD4/7AQxDy:TUnuxBzd1IgYmoIfD
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2