3c806eec38fc8565c942fe0a79331bf3215989d494bb3d5fa8d8057dcef58e03 | Triage

Resubmissions

03-08-2023 07:22

230803-h7h8fsbh93 8

24-10-2022 20:50

221024-zmn2msaeen 10

Sharing

General

Target

Warcracft III Reforged+Keygen+CD Keys.rar
Size

30.2MB
Sample

230803-h7h8fsbh93
MD5

03bf9239a1c35ef0f6f162180499167f
SHA1

b1921d4747ed0ca08ecb31dda5b57079dcd6085d
SHA256

3c806eec38fc8565c942fe0a79331bf3215989d494bb3d5fa8d8057dcef58e03
SHA512

6cd7a438a05c940649e8202e392318905e5785a0476a10388aa62081cdca2de9d9ede2045fb6fbabd116ad7b785b10c4970d0536fea8f945c5510db27c346273
SSDEEP

786432:eQaNznirxs9+seaiiI0Ppr91OLvHh99br84AEEuDW:eQSzB9+sPiD0Pn1Uvh99brhTDW

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  .............exe
- Size
  
  3.9MB
- MD5
  
  1c9d03acc5ce4d1565e01418e2892087
- SHA1
  
  345be215d0017d06a3934150105389730038fa69
- SHA256
  
  bdb03d50cba10bbbaea2409521c515d15f3e674e6ccabbadfec319bdc08cd1ea
- SHA512
  
  1442ad0b3af4fddc1c6980426a25f6d2c4b033902b8cc42596ad0077385ca3d56e4fed4517a61fe4d5b5b185b34030196ac9c5dcc61d93fd48292aed2b7998e8
- SSDEEP
  
  49152:gnHn5pXUXb6c9YuoHjAbDiYFpIDckO4iNQxgei6HQR9sXafgkDFMVR9C1UhPJXMS:45pEXOc9AH8FpQrDgeJrBiCV2HXq
Score

8^/10

spyware stealer
- Downloads MZ/PE file
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2