70a2b4ab4c4f4f8027aafc3f2cfdefa959830222205b93d36dfc7429f5e4be3a | Triage

Sharing

General

Target

70a2b4ab4c4f4f8027aafc3f2cfdefa959830222205b93d36dfc7429f5e4be3a
Size

1.5MB
Sample

231006-ytek4sff5v
MD5

ece53f756522240e016186d141321d25
SHA1

8e8a7e24240373d867b94db9af05b760e81309af
SHA256

70a2b4ab4c4f4f8027aafc3f2cfdefa959830222205b93d36dfc7429f5e4be3a
SHA512

a392e2ebf074decc93136f356eae11c8bbef66307d5987f739736e14ac73a783b558286420093c635bcd10bc29ce22fc505e4e8b4afa5ba1ca7b4fb14d716456
SSDEEP

24576:GM7CKVVVMxPcROUnuXGJYybQ56dOA/85RkV4lN/ZLqg/YmrkjeWz:1AseGJPQ0OAUfkVyN/ZLCMkj

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  70a2b4ab4c4f4f8027aafc3f2cfdefa959830222205b93d36dfc7429f5e4be3a
- Size
  
  1.5MB
- MD5
  
  ece53f756522240e016186d141321d25
- SHA1
  
  8e8a7e24240373d867b94db9af05b760e81309af
- SHA256
  
  70a2b4ab4c4f4f8027aafc3f2cfdefa959830222205b93d36dfc7429f5e4be3a
- SHA512
  
  a392e2ebf074decc93136f356eae11c8bbef66307d5987f739736e14ac73a783b558286420093c635bcd10bc29ce22fc505e4e8b4afa5ba1ca7b4fb14d716456
- SSDEEP
  
  24576:GM7CKVVVMxPcROUnuXGJYybQ56dOA/85RkV4lN/ZLqg/YmrkjeWz:1AseGJPQ0OAUfkVyN/ZLCMkj
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2