508a6847cc3c2a81052ee31d211130f367a52c1ef61d98716bc9d4c5571ec48a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

evil.exe
Size

1.5MB
Sample

230808-s8g2wsdf85
MD5

b09466557917f41e0cf71e5a1c2b727b
SHA1

17f076aa0cba84bc2ec48073408c870df5b3f728
SHA256

508a6847cc3c2a81052ee31d211130f367a52c1ef61d98716bc9d4c5571ec48a
SHA512

e40084d5b3c509e3e0665d7f94e851848bdab9bdb17d9b566368aac6a27bf3472fa89f41fe9dd6d2bc86c8f443278cea9329755bc6876a672a4dacbf2417e49a
SSDEEP

24576:g+35PRhVY3d3+bl3peCvU1br8h4l2CPdtqvVXUkrfj7rnPbf1u:bR80Le8h9hl17

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  evil.exe
- Size
  
  1.5MB
- MD5
  
  b09466557917f41e0cf71e5a1c2b727b
- SHA1
  
  17f076aa0cba84bc2ec48073408c870df5b3f728
- SHA256
  
  508a6847cc3c2a81052ee31d211130f367a52c1ef61d98716bc9d4c5571ec48a
- SHA512
  
  e40084d5b3c509e3e0665d7f94e851848bdab9bdb17d9b566368aac6a27bf3472fa89f41fe9dd6d2bc86c8f443278cea9329755bc6876a672a4dacbf2417e49a
- SSDEEP
  
  24576:g+35PRhVY3d3+bl3peCvU1br8h4l2CPdtqvVXUkrfj7rnPbf1u:bR80Le8h9hl17
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1