37b8387d3e126e057247e99ae3d0e0fcce3c0013ac1d1442cc1dae21eb3d15ab | Triage

Sharing

General

Target

file.exe
Size

405KB
Sample

230508-e7nw6aag7v
MD5

f03c5a8db0692c724cc4f3568d25e062
SHA1

23f5017f7aee63427f6ef2cb8552e17d3047ad0b
SHA256

37b8387d3e126e057247e99ae3d0e0fcce3c0013ac1d1442cc1dae21eb3d15ab
SHA512

41623deaefb91900c24b34065dbe38c7c7edbdf885224c7f721296135baa9dffad3e2161a0c51d7184f3dfca975ff5a68db1985cb705d5b5f556e41dc925d00b
SSDEEP

6144:5otNG6L4m446Lw6/m+RS67SplQIjPVYfvd9RYGSbHc3ZBh/R6oV53XcS:5o/l4fw63RS67ClNOflbYP8Lh3J

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  405KB
- MD5
  
  f03c5a8db0692c724cc4f3568d25e062
- SHA1
  
  23f5017f7aee63427f6ef2cb8552e17d3047ad0b
- SHA256
  
  37b8387d3e126e057247e99ae3d0e0fcce3c0013ac1d1442cc1dae21eb3d15ab
- SHA512
  
  41623deaefb91900c24b34065dbe38c7c7edbdf885224c7f721296135baa9dffad3e2161a0c51d7184f3dfca975ff5a68db1985cb705d5b5f556e41dc925d00b
- SSDEEP
  
  6144:5otNG6L4m446Lw6/m+RS67SplQIjPVYfvd9RYGSbHc3ZBh/R6oV53XcS:5o/l4fw63RS67ClNOflbYP8Lh3J
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer