a24713ef7be5f4650b6515b90afae26b69e6ec1a86c4e286ffa2dfea498344b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6dec1576474bd6ac15c37707bac4722b_mafia_JC.exe
Size

1.2MB
Sample

230805-nk2n6sde8t
MD5

6dec1576474bd6ac15c37707bac4722b
SHA1

1565eb6adb91480a21ddf361a096308f1b4a956d
SHA256

a24713ef7be5f4650b6515b90afae26b69e6ec1a86c4e286ffa2dfea498344b1
SHA512

16ec8e36a8da6b1e8c74e3292049511d535b920d440806c4b0a88f06027e5cfda7f8f52dd0b86d1fb91b80a2afa3d7540e6d4e349d907607d65519fadfd815bc
SSDEEP

24576:tEfCvka3N/Xi6kgaINVRX/diX2n0e435qkLeI+t2r48WocYuK5eK/TR9AGOjbvDK:CfCL9/XiTcNjPdiGnT65qkYt2r48Wocm

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  6dec1576474bd6ac15c37707bac4722b_mafia_JC.exe
- Size
  
  1.2MB
- MD5
  
  6dec1576474bd6ac15c37707bac4722b
- SHA1
  
  1565eb6adb91480a21ddf361a096308f1b4a956d
- SHA256
  
  a24713ef7be5f4650b6515b90afae26b69e6ec1a86c4e286ffa2dfea498344b1
- SHA512
  
  16ec8e36a8da6b1e8c74e3292049511d535b920d440806c4b0a88f06027e5cfda7f8f52dd0b86d1fb91b80a2afa3d7540e6d4e349d907607d65519fadfd815bc
- SSDEEP
  
  24576:tEfCvka3N/Xi6kgaINVRX/diX2n0e435qkLeI+t2r48WocYuK5eK/TR9AGOjbvDK:CfCL9/XiTcNjPdiGnT65qkYt2r48Wocm
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2