9fac3e077e7911a1b97f559680ee815a4d919ec848ee73f4c0e7e5d0b5d573c4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9fac3e077e7911a1b97f559680ee815a4d919ec848ee73f4c0e7e5d0b5d573c4
Size

470KB
Sample

231007-ya9l5seh5x
MD5

7abf002231d7a53c2d0254b18f00b8b6
SHA1

fbe8852e3059b5b3ffc5b092b78c6700e487e456
SHA256

9fac3e077e7911a1b97f559680ee815a4d919ec848ee73f4c0e7e5d0b5d573c4
SHA512

9bab35a4b86aca622216e2055e3b20c394f97d2a757fcbac5057dab6ac3bb1b199a761c035b9f02b116179d82e42c803be619ca8b8472a1f67ea60297d0ea3eb
SSDEEP

12288:xmegLcKW1qWcNPOUvelkVSoiSj8fJkk/DkQXNfM17:xm3l2TcNgWVSoiW82k/XfMh

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  9fac3e077e7911a1b97f559680ee815a4d919ec848ee73f4c0e7e5d0b5d573c4
- Size
  
  470KB
- MD5
  
  7abf002231d7a53c2d0254b18f00b8b6
- SHA1
  
  fbe8852e3059b5b3ffc5b092b78c6700e487e456
- SHA256
  
  9fac3e077e7911a1b97f559680ee815a4d919ec848ee73f4c0e7e5d0b5d573c4
- SHA512
  
  9bab35a4b86aca622216e2055e3b20c394f97d2a757fcbac5057dab6ac3bb1b199a761c035b9f02b116179d82e42c803be619ca8b8472a1f67ea60297d0ea3eb
- SSDEEP
  
  12288:xmegLcKW1qWcNPOUvelkVSoiSj8fJkk/DkQXNfM17:xm3l2TcNgWVSoiW82k/XfMh
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2