7d1488961d0407f9095739824e5cff629afa067ed5e35403006e3cc0812c94a4 | Triage

Sharing

General

Target

7d1488961d0407f9095739824e5cff629afa067ed5e35403006e3cc0812c94a4
Size

1.5MB
Sample

230811-n355bacf78
MD5

379046f1fa4489686c19d45265609998
SHA1

0aae8f309766986ae8beb9d8ba14f8dd4047bf91
SHA256

7d1488961d0407f9095739824e5cff629afa067ed5e35403006e3cc0812c94a4
SHA512

6e3dd828f3119fdd75422119271d52032d5b7a338dd06b5db1e43478d3cc1f068f0cbe65c76a9076bde640fc501f6002eaa583f03a08ad1602f1e3f5f687c197
SSDEEP

24576:ErSt7WN5l12bUU3sollRPBLcEVLRn/1WZoh3oLCiiEPeXjTm4nZTUZWIHy0jSOhf:rtyNT14Rfc6h8C8yO4ZgW6NzHTojV2r

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  7d1488961d0407f9095739824e5cff629afa067ed5e35403006e3cc0812c94a4
- Size
  
  1.5MB
- MD5
  
  379046f1fa4489686c19d45265609998
- SHA1
  
  0aae8f309766986ae8beb9d8ba14f8dd4047bf91
- SHA256
  
  7d1488961d0407f9095739824e5cff629afa067ed5e35403006e3cc0812c94a4
- SHA512
  
  6e3dd828f3119fdd75422119271d52032d5b7a338dd06b5db1e43478d3cc1f068f0cbe65c76a9076bde640fc501f6002eaa583f03a08ad1602f1e3f5f687c197
- SSDEEP
  
  24576:ErSt7WN5l12bUU3sollRPBLcEVLRn/1WZoh3oLCiiEPeXjTm4nZTUZWIHy0jSOhf:rtyNT14Rfc6h8C8yO4ZgW6NzHTojV2r
Score

8^/10

spyware stealer
- Blocklisted process makes network request
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops Chrome extension
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2