bluefox | 89e0f1b4ffdd8514c336dba32225d7e9cfc924d7111ecb94d92146aa17f3baaa | Triage

Submit
Reports

Overview

overview

Static

static

1

09dc4d3be6...0e.exe

windows7-x64

09dc4d3be6...0e.exe

windows10-2004-x64

Sharing

General

Target

673a89ca2337a34c3e377203fcbb10cf.bin
Size

858KB
Sample

230320-bpjypsdb7s
MD5

d3feb4e6e38f51eccc436aa7c1552f70
SHA1

fd23e4cfc3bf09fa8090aaa59660252850f2395d
SHA256

89e0f1b4ffdd8514c336dba32225d7e9cfc924d7111ecb94d92146aa17f3baaa
SHA512

a29ab5a3e64127b17ca1b9cde97b69f68e91545d32a9e9fab3416960254e04737b3af5f1958f3838284c777a737428948bbc69826e36051a88a09440a474d252
SSDEEP

24576:k+Pe0Dq7QhrTwOK4IX65+ODzhCqHEITFKOVeZ99j:k7LUm4B5XDMqH43Lj

Score

10^/10

bluefox spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

09dc4d3be6dce14fd4e9a99c95b5afd5d29947742053e47466d8a468d49f490e.exe

Resource

win7-20230220-en

bluefox spyware stealer

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

09dc4d3be6dce14fd4e9a99c95b5afd5d29947742053e47466d8a468d49f490e.exe

Resource

win10v2004-20230221-en

bluefox stealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  09dc4d3be6dce14fd4e9a99c95b5afd5d29947742053e47466d8a468d49f490e.exe
- Size
  
  867KB
- MD5
  
  673a89ca2337a34c3e377203fcbb10cf
- SHA1
  
  80bd02c2298c76303e31ae851c997ebb73788b86
- SHA256
  
  09dc4d3be6dce14fd4e9a99c95b5afd5d29947742053e47466d8a468d49f490e
- SHA512
  
  e83292db6fe9afb60d6fa5ec5da6ce2def9cd6b95660bfe1971ddcf3e7fd28a013e9b85a595e8564b27473882393da8e871fe1e32dfe06eff7734aab439a783b
- SSDEEP
  
  24576:EvgMXBy6gVm26JqzICGRTttDoEXTmbo3DE0HHhXb9D6dh0:LMX46gVV64MJZjmc3Dnhl6dG
Score

10^/10

bluefox spyware stealer
- BlueFox
  BlueFox is an infostealer written in C# and first seen in December 2021.
  stealer bluefox
- BlueFox Stealer payload
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bluefoxspywarestealer

behavioral2

© 2018-2024

Terms | Privacy