362df742f035af82ecd9892743fe717a14266a10abdb686e0bbea66ce9ad52d6 | Triage

Sharing

General

Target

Syxytor.bin.exe
Size

99KB
Sample

230718-erx5wsgb95
MD5

5ce1a24da24cf9aa8e2644e90f7fade5
SHA1

a4c3ba6a06c645c7c58bd614ee064657d2eaf2fb
SHA256

362df742f035af82ecd9892743fe717a14266a10abdb686e0bbea66ce9ad52d6
SHA512

49854120cf9ceffdf15c0429b393ebf8c96c77d22444917c9ca7b9ffd398065a19efd4d34193ebea93685074b5558c68f3ae999b0d36df0264ce76dd44ef42a5
SSDEEP

1536:8LUNLKF3SNmyI/TaqLMuNhTEorkiDBk5SsGJQ5GyKFIaW9OfYQat8gTs:gtFH/RLTTNBk5PuQ5BX8eVQ

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  Syxytor.bin.exe
- Size
  
  99KB
- MD5
  
  5ce1a24da24cf9aa8e2644e90f7fade5
- SHA1
  
  a4c3ba6a06c645c7c58bd614ee064657d2eaf2fb
- SHA256
  
  362df742f035af82ecd9892743fe717a14266a10abdb686e0bbea66ce9ad52d6
- SHA512
  
  49854120cf9ceffdf15c0429b393ebf8c96c77d22444917c9ca7b9ffd398065a19efd4d34193ebea93685074b5558c68f3ae999b0d36df0264ce76dd44ef42a5
- SSDEEP
  
  1536:8LUNLKF3SNmyI/TaqLMuNhTEorkiDBk5SsGJQ5GyKFIaW9OfYQat8gTs:gtFH/RLTTNBk5PuQ5BX8eVQ
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2