fabookie | ee08875a590460e5060f6c7c387522325c9bf207174c2c42366b1b7f931cf315 | Triage

Sharing

General

Target

ee08875a590460e5060f6c7c387522325c9bf207174c2c42366b1b7f931cf315_JC.exe
Size

636KB
Sample

231011-gnzknadc6y
MD5

9497fee68424be9724a226d3f4f76a94
SHA1

14b3d8529cfd8aae756323746e8d388a08812058
SHA256

ee08875a590460e5060f6c7c387522325c9bf207174c2c42366b1b7f931cf315
SHA512

1ca835cc0bd87ec0e66fd7aec1b4271bbd376088d3d960bee3016f88c27703aa6b8912885f1e603bc70a374c6047065f292cc1d49391c41b1596ba3ee9658801
SSDEEP

6144:MfIWs1kdFDIZAkzJwz9OhcHQU8rATKbGHbI0/tGKP15Vuc7GHbI0/tGKP15Vuc1h:ubfGtcH5049Duca049Duc1y6

Score

10^/10

fabookie spyware stealer

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Targets

- Target
  
  ee08875a590460e5060f6c7c387522325c9bf207174c2c42366b1b7f931cf315_JC.exe
- Size
  
  636KB
- MD5
  
  9497fee68424be9724a226d3f4f76a94
- SHA1
  
  14b3d8529cfd8aae756323746e8d388a08812058
- SHA256
  
  ee08875a590460e5060f6c7c387522325c9bf207174c2c42366b1b7f931cf315
- SHA512
  
  1ca835cc0bd87ec0e66fd7aec1b4271bbd376088d3d960bee3016f88c27703aa6b8912885f1e603bc70a374c6047065f292cc1d49391c41b1596ba3ee9658801
- SSDEEP
  
  6144:MfIWs1kdFDIZAkzJwz9OhcHQU8rATKbGHbI0/tGKP15Vuc7GHbI0/tGKP15Vuc1h:ubfGtcH5049Duca049Duc1y6
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer

behavioral2

fabookiespywarestealer