fabookie | ccf14b7a910c92c1d9b092c62e8e74ef68b521129672ad426fcc2c26fc1d0ecb | Triage

Sharing

General

Target

ccf14b7a910c92c1d9b092c62e8e74ef68b521129672ad426fcc2c26fc1d0ecb_JC.exe
Size

636KB
Sample

230821-x1w83aff46
MD5

1fb5df596e85c8e3d1f9ce5d7442364e
SHA1

52454afab3e1704db54e37206ceddcbb1d62402f
SHA256

ccf14b7a910c92c1d9b092c62e8e74ef68b521129672ad426fcc2c26fc1d0ecb
SHA512

b819c1d9d823fe65cacf8d6c3896d976c39dd274ff02cb9e43adffb9b2fdfa0c518fc15df9ab62211086d9d739669b906dfc6e5e531af1f9dc85a285ca30b495
SSDEEP

6144:5Y7ssFDIRjkzJwz9OhcHQU8rATKbGHbI0/tGKP15Vuc7GHbI0/tGKP15Vuc1y6:U9RtcH5049Duca049Duc1y6

Score

10^/10

fabookie spyware stealer

Malware Config

Targets

- Target
  
  ccf14b7a910c92c1d9b092c62e8e74ef68b521129672ad426fcc2c26fc1d0ecb_JC.exe
- Size
  
  636KB
- MD5
  
  1fb5df596e85c8e3d1f9ce5d7442364e
- SHA1
  
  52454afab3e1704db54e37206ceddcbb1d62402f
- SHA256
  
  ccf14b7a910c92c1d9b092c62e8e74ef68b521129672ad426fcc2c26fc1d0ecb
- SHA512
  
  b819c1d9d823fe65cacf8d6c3896d976c39dd274ff02cb9e43adffb9b2fdfa0c518fc15df9ab62211086d9d739669b906dfc6e5e531af1f9dc85a285ca30b495
- SSDEEP
  
  6144:5Y7ssFDIRjkzJwz9OhcHQU8rATKbGHbI0/tGKP15Vuc7GHbI0/tGKP15Vuc1y6:U9RtcH5049Duca049Duc1y6
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer

behavioral2

fabookiespywarestealer