a33ec26c7f1dbc1b4bf33f9692fdb267faf8748a66de2cf5f3342575c29e7dee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a33ec26c7f1dbc1b4bf33f9692fdb267faf8748a66de2cf5f3342575c29e7dee
Size

472KB
Sample

230923-1wqghacd26
MD5

a29c5ea5f009e37f2b567fdfcd6f04d4
SHA1

44eae13fe113f6f98f3b38f8d995c475c7af8d9a
SHA256

a33ec26c7f1dbc1b4bf33f9692fdb267faf8748a66de2cf5f3342575c29e7dee
SHA512

8e11005af0b9c3febe6bee7f77a5c3e3cba9ef5c3a681227ffe5f38d2739db6a500fb7acb6e08718601a6afad6d69f4fbfb18ef7f5b1a6429e193dd486cf2bfd
SSDEEP

6144:5g4KETQkSPqJwdeidzErR1zVqRS5BiycPms6KRlaUxHUpxP0SFp9bvgJsAZXZJoP:WMTLqqKmR1z8Siox6UZkpZLz+

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  a33ec26c7f1dbc1b4bf33f9692fdb267faf8748a66de2cf5f3342575c29e7dee
- Size
  
  472KB
- MD5
  
  a29c5ea5f009e37f2b567fdfcd6f04d4
- SHA1
  
  44eae13fe113f6f98f3b38f8d995c475c7af8d9a
- SHA256
  
  a33ec26c7f1dbc1b4bf33f9692fdb267faf8748a66de2cf5f3342575c29e7dee
- SHA512
  
  8e11005af0b9c3febe6bee7f77a5c3e3cba9ef5c3a681227ffe5f38d2739db6a500fb7acb6e08718601a6afad6d69f4fbfb18ef7f5b1a6429e193dd486cf2bfd
- SSDEEP
  
  6144:5g4KETQkSPqJwdeidzErR1zVqRS5BiycPms6KRlaUxHUpxP0SFp9bvgJsAZXZJoP:WMTLqqKmR1z8Siox6UZkpZLz+
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer