fabookie | 493ebf087d0a960507abe4cc4872f4a4e8a36a84799e3c9c3559e4295f9baf21 | Triage

Sharing

General

Target

227b4cb6c4a4a6477dd18c6659c5f8ac.exe
Size

397KB
Sample

230826-ke97ksha78
MD5

227b4cb6c4a4a6477dd18c6659c5f8ac
SHA1

d5ab18af347dd39e3bfdb92ed7bc4d2d21be35ac
SHA256

493ebf087d0a960507abe4cc4872f4a4e8a36a84799e3c9c3559e4295f9baf21
SHA512

4c348e8b6a57fdcc32e2a8dcd3c79532fbeb54d1667a500978660337033782f3faf713570ad17478c4e1c16ecbae5a291d5bf94bc14343a5d5dfc276744ec2c5
SSDEEP

1536:qyK9MV0CLSuOCWqeyGaOi2K+Sm6uCWqe+aOi2K+Sm6uuCuCWqeyGaOi2K+Sm6uC1:qX9M1uuNnAYy4AZ6TvcgJFW

Score

10^/10

fabookie spyware stealer

Malware Config

Targets

- Target
  
  227b4cb6c4a4a6477dd18c6659c5f8ac.exe
- Size
  
  397KB
- MD5
  
  227b4cb6c4a4a6477dd18c6659c5f8ac
- SHA1
  
  d5ab18af347dd39e3bfdb92ed7bc4d2d21be35ac
- SHA256
  
  493ebf087d0a960507abe4cc4872f4a4e8a36a84799e3c9c3559e4295f9baf21
- SHA512
  
  4c348e8b6a57fdcc32e2a8dcd3c79532fbeb54d1667a500978660337033782f3faf713570ad17478c4e1c16ecbae5a291d5bf94bc14343a5d5dfc276744ec2c5
- SSDEEP
  
  1536:qyK9MV0CLSuOCWqeyGaOi2K+Sm6uCWqe+aOi2K+Sm6uuCuCWqeyGaOi2K+Sm6uC1:qX9M1uuNnAYy4AZ6TvcgJFW
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer

behavioral2

fabookiespywarestealer