736edb16db13681f70d047c063aa518480379be5d6a15c2d55bbe9594c3766cb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

736edb16db13681f70d047c063aa518480379be5d6a15c2d55bbe9594c3766cb
Size

33KB
Sample

230901-1q7tlaaa4w
MD5

1053288a404474323acb4b767b58f30e
SHA1

63c2260f2d15f80bd785b0e94553e19266e0c74e
SHA256

736edb16db13681f70d047c063aa518480379be5d6a15c2d55bbe9594c3766cb
SHA512

b1043e1829350ee61c45ceeeb3713381e974ed6cb25eacd3d1fe5fc8ac431f459eefddb5a90ee142dd8abfc0683eb342bd9fa1e234470eefdd42f1ec6992cd87
SSDEEP

768:FdO5RroZJ76739sBWstDcVgNdb7Vis/LZ+jZ5:Fde+Zk781FNdbk+0Z5

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  736edb16db13681f70d047c063aa518480379be5d6a15c2d55bbe9594c3766cb
- Size
  
  33KB
- MD5
  
  1053288a404474323acb4b767b58f30e
- SHA1
  
  63c2260f2d15f80bd785b0e94553e19266e0c74e
- SHA256
  
  736edb16db13681f70d047c063aa518480379be5d6a15c2d55bbe9594c3766cb
- SHA512
  
  b1043e1829350ee61c45ceeeb3713381e974ed6cb25eacd3d1fe5fc8ac431f459eefddb5a90ee142dd8abfc0683eb342bd9fa1e234470eefdd42f1ec6992cd87
- SSDEEP
  
  768:FdO5RroZJ76739sBWstDcVgNdb7Vis/LZ+jZ5:Fde+Zk781FNdbk+0Z5
Score

7^/10

spyware stealer
- Drops startup file
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2