9a5a0afe6c05780bf3ea8fd3c3215ec7846fd67d24d5b15f6f7d5e5b626cb87e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

INANIMA_BETA.zip
Size

49.7MB
Sample

230318-zaex7sfg5s
MD5

55cc433f568769407e32c6daa9406bd2
SHA1

062787d3a4282c5bdffaa506543ae468dcf2f792
SHA256

9a5a0afe6c05780bf3ea8fd3c3215ec7846fd67d24d5b15f6f7d5e5b626cb87e
SHA512

fede91ab2f826f19431b58dc42176ce115b279470f2d2fcb60f7ec88981197ab3a504192944d33267f06d4e92f82a750ff5b361792f18e91ac74bf6ff0bba2b0
SSDEEP

786432:b/+WMY2Q0PBOaEWBRT+sIeb13Qo5600PPZOSzMRjuCdN20o4fqHSPWJQHjbryZy+:cFQiTEwlIQ+o560ePZOS4x2f/HrJOL+

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  INANIMA.exe
- Size
  
  49.7MB
- MD5
  
  263e3b7bd3de7a6b1b33b17e3f608dc1
- SHA1
  
  08ff4c2c6ec341f4b03699aba4cf6f17021d7ac1
- SHA256
  
  ae3d8e56dbd5c77b385342e926c7b1e14a6c6c7af54a548018a2765ef977c712
- SHA512
  
  18496ae29da17b505342b21b779bfed92fee8b972be42332c0378587d2426962262954cafdd8578e9daa09399a3b0f2f7ef6638cbb6a5412646ab037d0585ca6
- SSDEEP
  
  786432:DjCi+YqTlfYWcyXjdMsIMVD7MsjCoCVTbQiBAP3WsVp844UH8x6PgRvNZDPrqMO7:MxRdciPIq8sjCoyTbQimH8zpxp5Gx7
Score

7^/10

spyware stealer
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2