295652cb267e58e44e331fa5f19c6ddd281b69e317af9301092f966cdb8b8f6d | Triage

Sharing

General

Target

295652cb267e58e44e331fa5f19c6ddd281b69e317af9301092f966cdb8b8f6d
Size

407KB
Sample

230823-3r4vfahh9y
MD5

383fd6abccb419437b6b1a65102664da
SHA1

404022fff78ae16134ded50cad6c1fa26992c543
SHA256

295652cb267e58e44e331fa5f19c6ddd281b69e317af9301092f966cdb8b8f6d
SHA512

0f7afa6c8d0d8dffb9c2ddeb6eddcd1c5ad59b1c1361a03684a76bef1ee5555f997ee91bc7a3fdc953a6c5965e5530b97f3fc0a8b8ffa16fcc99b29e5375d88f
SSDEEP

6144:yj6AJLPz/xnjKSJ/CT5BzwMmBCSJl6n6GzKO8YpqBqUyKTdR:yj6AJX/FhpPBqzKOxfod

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  295652cb267e58e44e331fa5f19c6ddd281b69e317af9301092f966cdb8b8f6d
- Size
  
  407KB
- MD5
  
  383fd6abccb419437b6b1a65102664da
- SHA1
  
  404022fff78ae16134ded50cad6c1fa26992c543
- SHA256
  
  295652cb267e58e44e331fa5f19c6ddd281b69e317af9301092f966cdb8b8f6d
- SHA512
  
  0f7afa6c8d0d8dffb9c2ddeb6eddcd1c5ad59b1c1361a03684a76bef1ee5555f997ee91bc7a3fdc953a6c5965e5530b97f3fc0a8b8ffa16fcc99b29e5375d88f
- SSDEEP
  
  6144:yj6AJLPz/xnjKSJ/CT5BzwMmBCSJl6n6GzKO8YpqBqUyKTdR:yj6AJX/FhpPBqzKOxfod
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1