5becf7e0899e0cc81e41d67d5b52e707dda03d155330605498b1b770a5200508 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

686de24acfa700d4cde2ad67896c2c4c.bin
Size

133KB
Sample

230506-cn9neafe94
MD5

948e932e729ee2dfab3971889f2c55f5
SHA1

e592b8870f959b5c14917d61546d776b57f4531a
SHA256

5becf7e0899e0cc81e41d67d5b52e707dda03d155330605498b1b770a5200508
SHA512

d21545c994ddd90f3ab375a520d26868b14e6afd78fd86e62d762d4df9cad28d9b358c158896f6c7df6c49991ce4db903e9f580bb3b4c5c76dfd05da86d9f122
SSDEEP

3072:uPQLIgJcnwtMMxq+5dDO+quGo0YHsz4bblxXQSzCRh+I/0Z/:uPQL+nwtbz5kuB0c3bblxXQU8h+I/6/

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  67eaee66522dc72cb0e8d9722f0fe531fa9ed1634cf26cf2467519fc4b6defc0.exe
- Size
  
  256KB
- MD5
  
  686de24acfa700d4cde2ad67896c2c4c
- SHA1
  
  040c7e6e8fb0027e176726b430617dd0a7986619
- SHA256
  
  67eaee66522dc72cb0e8d9722f0fe531fa9ed1634cf26cf2467519fc4b6defc0
- SHA512
  
  850da53957cc9936940bc9463975fad6314f27a4d5c3aa5ab87da0185dc2c494d379644b68f75e62bde62e2b347c21b974412fe0476e72538e03834ffc2758dd
- SSDEEP
  
  3072:A2K5l9oT7tDdoMVyz7/3qTCPVLoKyzKJ68jtpiZByNJQDT48qhzgpWjd8mnxYY6K:2sDdh7TqLtBRpiLyXsz8pu16I2twK9
Score

7^/10

spyware stealer
- Reads user/profile data of local email clients
  Email clients store some user data on disk where infostealers will often target it.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2