166d7c35c363c90108ac9a9e75877630380f44d6e240482d21fdeac904c7ab25 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

166d7c35c363c90108ac9a9e75877630380f44d6e240482d21fdeac904c7ab25
Size

438KB
Sample

230507-y4h2aaff99
MD5

3c1ed9f989d9026a5c790774e6173f72
SHA1

b9f7529a37655e522fb056f4e634e1a0fc64fb02
SHA256

166d7c35c363c90108ac9a9e75877630380f44d6e240482d21fdeac904c7ab25
SHA512

603164ade1016212241d7a903add8ef1e467e2cc6363c6e75e0fd42aa780f584e5686e96493438d4784fe0bfb361835d89de5fd92ceb9c0aaaef106eb8d7501d
SSDEEP

6144:A4GISsLylHBfzlXmzib6rxy+VUTbj6I196BnAbZVh7xgtmK:A4GKOlHrXmzimVqbjrX69OVMA

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  166d7c35c363c90108ac9a9e75877630380f44d6e240482d21fdeac904c7ab25
- Size
  
  438KB
- MD5
  
  3c1ed9f989d9026a5c790774e6173f72
- SHA1
  
  b9f7529a37655e522fb056f4e634e1a0fc64fb02
- SHA256
  
  166d7c35c363c90108ac9a9e75877630380f44d6e240482d21fdeac904c7ab25
- SHA512
  
  603164ade1016212241d7a903add8ef1e467e2cc6363c6e75e0fd42aa780f584e5686e96493438d4784fe0bfb361835d89de5fd92ceb9c0aaaef106eb8d7501d
- SSDEEP
  
  6144:A4GISsLylHBfzlXmzib6rxy+VUTbj6I196BnAbZVh7xgtmK:A4GKOlHrXmzimVqbjrX69OVMA
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer