83f79186ecc1c4c5b6be07d6f6f96670b08f285ee74934802bab8317dc0fc370 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

83f79186ecc1c4c5b6be07d6f6f96670b08f285ee74934802bab8317dc0fc370
Size

8.8MB
Sample

230612-3a76jaef6z
MD5

dce55bbdd6eed9c8208b7e2581566ff0
SHA1

ce14c978cff162471be02f95340c5eb4b40a628e
SHA256

83f79186ecc1c4c5b6be07d6f6f96670b08f285ee74934802bab8317dc0fc370
SHA512

f8e88f7c2c56b2f994c7c8305461ee69a4bb10b6ee8509bb7cbee10576817e87fd8e0a05842cc5072f98f7d0cd6401a270d89983c2c1ebac0d5331e0dcfc9c51
SSDEEP

196608:iI+pewbRUslbsbjadzxIWinWodiWajZKZqNZw1w:oLbbsCxIWyd4jZKZ8

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  83f79186ecc1c4c5b6be07d6f6f96670b08f285ee74934802bab8317dc0fc370
- Size
  
  8.8MB
- MD5
  
  dce55bbdd6eed9c8208b7e2581566ff0
- SHA1
  
  ce14c978cff162471be02f95340c5eb4b40a628e
- SHA256
  
  83f79186ecc1c4c5b6be07d6f6f96670b08f285ee74934802bab8317dc0fc370
- SHA512
  
  f8e88f7c2c56b2f994c7c8305461ee69a4bb10b6ee8509bb7cbee10576817e87fd8e0a05842cc5072f98f7d0cd6401a270d89983c2c1ebac0d5331e0dcfc9c51
- SSDEEP
  
  196608:iI+pewbRUslbsbjadzxIWinWodiWajZKZqNZw1w:oLbbsCxIWyd4jZKZ8
Score

7^/10

spyware stealer
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2