fabookie | 2412a82f5d8c13a324a3763817780b17d1f17ed4b9b76a860520e31b541bbc75 | Triage

Sharing

General

Target

2412a82f5d8c13a324a3763817780b17d1f17ed4b9b76a860520e31b541bbc75
Size

636KB
Sample

230923-c9f8zsdg66
MD5

9c860033c75dd0e1644b925392a13077
SHA1

06fcf5ea984001713547df547ea7104b51df0227
SHA256

2412a82f5d8c13a324a3763817780b17d1f17ed4b9b76a860520e31b541bbc75
SHA512

c8a46d2bed3e9c2a945cdea189657450accac5d940b5893b8bea4c5eb9f10b920c524e4db1365fe9cc561581413153ac131e20589f4efa2aedfc0f28bb90150b
SSDEEP

6144:JfIJs1RHFDIOVkzJwz9OhcHQU8rATKbGHbI0/tGKP15Vuc7GHbI0/tGKP15Vuc1h:dYmstcH5049Duca049Duc1y6

Score

10^/10

fabookie spyware stealer

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Targets

- Target
  
  2412a82f5d8c13a324a3763817780b17d1f17ed4b9b76a860520e31b541bbc75
- Size
  
  636KB
- MD5
  
  9c860033c75dd0e1644b925392a13077
- SHA1
  
  06fcf5ea984001713547df547ea7104b51df0227
- SHA256
  
  2412a82f5d8c13a324a3763817780b17d1f17ed4b9b76a860520e31b541bbc75
- SHA512
  
  c8a46d2bed3e9c2a945cdea189657450accac5d940b5893b8bea4c5eb9f10b920c524e4db1365fe9cc561581413153ac131e20589f4efa2aedfc0f28bb90150b
- SSDEEP
  
  6144:JfIJs1RHFDIOVkzJwz9OhcHQU8rATKbGHbI0/tGKP15Vuc7GHbI0/tGKP15Vuc1h:dYmstcH5049Duca049Duc1y6
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer