18926c1426d47bca83eb47549f75d71c0ad77977639a0e286d1f5c3691ba8752 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

18926c1426d47bca83eb47549f75d71c0ad77977639a0e286d1f5c3691ba8752
Size

2.6MB
Sample

231006-ym9gxahg65
MD5

a2edc44fa74aa6208f5fe9cfd1f28189
SHA1

d45718489f90a8fbbd6edf4f03328cbe8836bf77
SHA256

18926c1426d47bca83eb47549f75d71c0ad77977639a0e286d1f5c3691ba8752
SHA512

fc33a353184b457169f78d1725caa88682764b9c7f40b75da52b12e8372e5a9e96325b3c4ba5e725b40df76975d86ae29548c16ae273eae08724f910acadc6cf
SSDEEP

49152:FuHxatv9FfWhAGncBhulSF1chAjSjhTSGIo8Y70sG024bW+kToNc:FuHK7dBhLQhAm2s0yW9wc

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  18926c1426d47bca83eb47549f75d71c0ad77977639a0e286d1f5c3691ba8752
- Size
  
  2.6MB
- MD5
  
  a2edc44fa74aa6208f5fe9cfd1f28189
- SHA1
  
  d45718489f90a8fbbd6edf4f03328cbe8836bf77
- SHA256
  
  18926c1426d47bca83eb47549f75d71c0ad77977639a0e286d1f5c3691ba8752
- SHA512
  
  fc33a353184b457169f78d1725caa88682764b9c7f40b75da52b12e8372e5a9e96325b3c4ba5e725b40df76975d86ae29548c16ae273eae08724f910acadc6cf
- SSDEEP
  
  49152:FuHxatv9FfWhAGncBhulSF1chAjSjhTSGIo8Y70sG024bW+kToNc:FuHK7dBhLQhAm2s0yW9wc
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2