General

  • Target

    d90d6cebf66957466dadc5dd6dc904bfba0fbd48b716c63e41e05f4904ff66b2

  • Size

    416KB

  • Sample

    231004-eavcnsha2t

  • MD5

    baa515de25ca285d5398de19f1193ec4

  • SHA1

    27e717122bdabae87ff1496b527e9f6880d1e369

  • SHA256

    d90d6cebf66957466dadc5dd6dc904bfba0fbd48b716c63e41e05f4904ff66b2

  • SHA512

    dbd9846710ed81e36474b3fa67ab8023b121f3a03fc2a5d7da1dd354dff5dc6d589eabb6a99558b6e88b57f4cc7f56b5cbf07a166abb85b09d7b08e34a6e6891

  • SSDEEP

    6144:syUa7AQnwciHMc4oiT4MKBz3I8JQGxerEhgVIXFM:sf4wcAQVrKi6nerLIX

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Targets

    • Target

      d90d6cebf66957466dadc5dd6dc904bfba0fbd48b716c63e41e05f4904ff66b2

    • Size

      416KB

    • MD5

      baa515de25ca285d5398de19f1193ec4

    • SHA1

      27e717122bdabae87ff1496b527e9f6880d1e369

    • SHA256

      d90d6cebf66957466dadc5dd6dc904bfba0fbd48b716c63e41e05f4904ff66b2

    • SHA512

      dbd9846710ed81e36474b3fa67ab8023b121f3a03fc2a5d7da1dd354dff5dc6d589eabb6a99558b6e88b57f4cc7f56b5cbf07a166abb85b09d7b08e34a6e6891

    • SSDEEP

      6144:syUa7AQnwciHMc4oiT4MKBz3I8JQGxerEhgVIXFM:sf4wcAQVrKi6nerLIX

    • Detect Fabookie payload

    • Fabookie

      Fabookie is facebook account info stealer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks