88a35b8efbb78f169b076d273c367a1597dc8fcf8792a9a61c895fde05f03a80 | Triage

Sharing

General

Target

1c6faacb8862c545c18ba4bd01cbfc39.bin
Size

130KB
Sample

230830-bj5m8aha25
MD5

dcd6afab63cee80380333ccb4c0f50cc
SHA1

9d4824676ce8c45a7375d38541a26540dd2a007f
SHA256

88a35b8efbb78f169b076d273c367a1597dc8fcf8792a9a61c895fde05f03a80
SHA512

c743b45363c8494294b08707ea3544c454ddcb9587fb7ec1a08cc43b48d33f42479644d64b58219d3113ac2474f51373f761caccd1a8b6adfdc957a79cc6795f
SSDEEP

3072:uGahSAyRoy8zsJ6ytEA/VsA44oQrIwxifgpZHD5D41uVIvW:ub5yRjAsJph/iA432IwxyAHVDrZ

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  dc7d22484f35ca6be941995a604bfa43b31c8dc0fead8907f2a1b5a586ae610d.exe
- Size
  
  341KB
- MD5
  
  1c6faacb8862c545c18ba4bd01cbfc39
- SHA1
  
  b2d751fbe750e80c9573970c2ac5d48e2a51947b
- SHA256
  
  dc7d22484f35ca6be941995a604bfa43b31c8dc0fead8907f2a1b5a586ae610d
- SHA512
  
  27d1345619b6052356f2560adee03d68f01b80970df4abfdb73f3ef344c2d671232cec919495eb90a0347b07ba4154b9338dc90dafb8e405ee97757dda079ea9
- SSDEEP
  
  6144:MiNFouqVrpZKERF4ppjz/7M9QOWEbNRFqN1avTi:hqwe4fYWEbNRFw
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2