87c9b723dac804469ebc6e59f5a3d9b141dd02fe2315a417e51490325b0a54a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87c9b723dac804469ebc6e59f5a3d9b141dd02fe2315a417e51490325b0a54a0
Size

368KB
Sample

230724-jv5flaca4w
MD5

3c4be657ab700294f23f3d51011b8b3c
SHA1

dc7c831172712971f3a20534e3572cab063fe0a1
SHA256

87c9b723dac804469ebc6e59f5a3d9b141dd02fe2315a417e51490325b0a54a0
SHA512

3129d61e276a1e45a038c26faa9ac37cab17a187540494b24497f810a470676d43cb34f4ab8e3ba614251cf9032ce6e6ebc990eceb500d7f70bd399f5fa51607
SSDEEP

6144:tz9QLNM7Pl1s6Lm86Kyw3eHOfU0syD4zjMvr0mdq11:VG5M7Pl17/7IyXH4zQbq

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  87c9b723dac804469ebc6e59f5a3d9b141dd02fe2315a417e51490325b0a54a0
- Size
  
  368KB
- MD5
  
  3c4be657ab700294f23f3d51011b8b3c
- SHA1
  
  dc7c831172712971f3a20534e3572cab063fe0a1
- SHA256
  
  87c9b723dac804469ebc6e59f5a3d9b141dd02fe2315a417e51490325b0a54a0
- SHA512
  
  3129d61e276a1e45a038c26faa9ac37cab17a187540494b24497f810a470676d43cb34f4ab8e3ba614251cf9032ce6e6ebc990eceb500d7f70bd399f5fa51607
- SSDEEP
  
  6144:tz9QLNM7Pl1s6Lm86Kyw3eHOfU0syD4zjMvr0mdq11:VG5M7Pl17/7IyXH4zQbq
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer