0ba7dfd0ede51b21afe794afa56fe5c5b5aaef087565aa1e7a759e31f20a5048 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tr-os.zip
Size

189KB
Sample

230413-fvj8waba3w
MD5

027a251201dc83880da83e7f9d247113
SHA1

a8d0c2a17b1dce8e5c189909c8fedf63cd347e09
SHA256

0ba7dfd0ede51b21afe794afa56fe5c5b5aaef087565aa1e7a759e31f20a5048
SHA512

08b6494100930c4ee58417709a2746591628f62687ae5512a6f8419500151f3152ea0d504bfc9c2c07411842f66978763e2ed08bcc6468801ce095f10d29c1fa
SSDEEP

3072:JWW7bciBz9r9sKrvJkKVEbuoIKP0a4nzHBHOYg+/TdtM7DgRzyRmm6KLFrhXN9qp:JnHci/9u1banpOYnBtM/pd6KLFhXfqHJ

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  tr-os.exe
- Size
  
  352KB
- MD5
  
  d440cae7614d0dd83bb808b77bcaa746
- SHA1
  
  f68e4594f801544b4a5ee03a2a63e3468e2acf5a
- SHA256
  
  3c3fa94b53aaa36e97031b3b27858b1f9fa3c03afdde652a9ce6ef9bbdce00bf
- SHA512
  
  7aa5d1465e530aa584ac0f45fa338de39ad3911a80bb6ccbcc36af1d7d6e9114878735650e5fca1f779eaf39c8b8282728b0fdf2349f6c396bb8d314610a5b1a
- SSDEEP
  
  6144:q/YPv4uhEW7lROiwa+pFbFwVVBmwvF+LV+4:q/C4u77POiwvpFb+VVRF+LVf
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2