e5714626c3b6299369e33ffd8e40f62aa7228bd2fc0f7d28913d5ef2c86e7dd4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Setup.exe
Size

3.9MB
Sample

230804-llvadaad34
MD5

943e3899d64ed1222e687cbffff5ebd4
SHA1

ca75c537005b380993785c91eea56dad02a759cc
SHA256

e5714626c3b6299369e33ffd8e40f62aa7228bd2fc0f7d28913d5ef2c86e7dd4
SHA512

9ad395e4775b4ede0196f2c8206bad775bd4b222174ad82637f23172b04014e5ab96c39f425dff1446562e202ec6d2c0bb4eb2ee6bcf7a4e93f351102698a20a
SSDEEP

98304:BL71aAvvznXKW3fxZJhzzFfk+4vRH/YOj:PaA3zh3fvgRg4

Score

8^/10

persistence spyware stealer

Malware Config

Targets

- Target
  
  Setup.exe
- Size
  
  3.9MB
- MD5
  
  943e3899d64ed1222e687cbffff5ebd4
- SHA1
  
  ca75c537005b380993785c91eea56dad02a759cc
- SHA256
  
  e5714626c3b6299369e33ffd8e40f62aa7228bd2fc0f7d28913d5ef2c86e7dd4
- SHA512
  
  9ad395e4775b4ede0196f2c8206bad775bd4b222174ad82637f23172b04014e5ab96c39f425dff1446562e202ec6d2c0bb4eb2ee6bcf7a4e93f351102698a20a
- SSDEEP
  
  98304:BL71aAvvznXKW3fxZJhzzFfk+4vRH/YOj:PaA3zh3fvgRg4
Score

8^/10

persistence spyware stealer
- Drops file in Drivers directory
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistencespywarestealer