41554c195bc8c87ddb8bbeacefe77c033f56549a03361dd76c2243546dd1f2d8 | Triage

Resubmissions

02-11-2023 21:08

231102-zy2f4shf43 10

02-11-2023 19:29

231102-x7fjwsec8w 10

30-06-2023 11:57

230630-n4mdlaae31 7

Sharing

General

Target

payload
Size

9.0MB
Sample

230630-n4mdlaae31
MD5

f6c5df8944a965d0d3aa2e124a1935af
SHA1

3ff36a13827d193a85eed40b59646bad1d676986
SHA256

41554c195bc8c87ddb8bbeacefe77c033f56549a03361dd76c2243546dd1f2d8
SHA512

8d75df03c33e9288b2d4b9e941c89ca2e0e7008e151ee3c104292427266043050f9966d0ff6e5c46890bde404337873768a4cde255778418144766646d08ceae
SSDEEP

196608:cTEcVnJULKrytYcJX7Nfjw9cI1qyz+6weSn5NeCX4X6:4EcVnukcJLtlIwqwemrePX6

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  payload
- Size
  
  9.0MB
- MD5
  
  f6c5df8944a965d0d3aa2e124a1935af
- SHA1
  
  3ff36a13827d193a85eed40b59646bad1d676986
- SHA256
  
  41554c195bc8c87ddb8bbeacefe77c033f56549a03361dd76c2243546dd1f2d8
- SHA512
  
  8d75df03c33e9288b2d4b9e941c89ca2e0e7008e151ee3c104292427266043050f9966d0ff6e5c46890bde404337873768a4cde255778418144766646d08ceae
- SSDEEP
  
  196608:cTEcVnJULKrytYcJX7Nfjw9cI1qyz+6weSn5NeCX4X6:4EcVnukcJLtlIwqwemrePX6
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2