297e070c298df06018c4b5a1ce7db9bcd5bfad2b6f47eb19bbc120c20abb3964 | Triage

Sharing

General

Target

sample.exe
Size

82.7MB
Sample

230324-yhw11sbb41
MD5

69f209ea06670d5a52c55c54867b961a
SHA1

d2fc5cbef74a8ebde7a36580ed2c265df6dbf1a6
SHA256

297e070c298df06018c4b5a1ce7db9bcd5bfad2b6f47eb19bbc120c20abb3964
SHA512

f796c2532ee9ff17bb0e576a590b098fbf2703b28ef2ef06322ff04c9d3df94c35174cca65f5e788b963527d763f45750822b00fec704809c93870acd093c942
SSDEEP

393216:5hdyk8fOH59APqHIvNlDOf/ujZ+4Kx0FV+cVxOnF3ECqQWAXFa3wNlL7Eczohyvl:5MwOIEd3a/ATFmrYPZsP08ExL5Y/IC

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  sample.exe
- Size
  
  82.7MB
- MD5
  
  69f209ea06670d5a52c55c54867b961a
- SHA1
  
  d2fc5cbef74a8ebde7a36580ed2c265df6dbf1a6
- SHA256
  
  297e070c298df06018c4b5a1ce7db9bcd5bfad2b6f47eb19bbc120c20abb3964
- SHA512
  
  f796c2532ee9ff17bb0e576a590b098fbf2703b28ef2ef06322ff04c9d3df94c35174cca65f5e788b963527d763f45750822b00fec704809c93870acd093c942
- SSDEEP
  
  393216:5hdyk8fOH59APqHIvNlDOf/ujZ+4Kx0FV+cVxOnF3ECqQWAXFa3wNlL7Eczohyvl:5MwOIEd3a/ATFmrYPZsP08ExL5Y/IC
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2