af729dfa2816b249e95058748c3cdd207e8bf12021fc4f38ddf4dd6e357087bd | Triage

Sharing

General

Target

af729dfa2816b249e95058748c3cdd207e8bf12021fc4f38ddf4dd6e357087bd
Size

1.5MB
Sample

231011-jnrwxscc57
MD5

e83baca91da4e58c4aceb95260882698
SHA1

d89170c20d2aa8fc6c88aff7abe8cf0adafd6d3c
SHA256

af729dfa2816b249e95058748c3cdd207e8bf12021fc4f38ddf4dd6e357087bd
SHA512

03d39fa9397e35c2204e17e3db4ae73f7962ecd4d111755b131f5b48e7a22faa47a8e6822c867b799f37a788372c9fbf7feec429ee8a180a557b3dec017f9d0f
SSDEEP

24576:eDd/uIExxBBBep8bVGneVUOE+TlSpTqNuOC1MkJPv/6eEFupKW+bxHB:e5Qx7BBep8nWcnIRMkdiDgpKW+bxB

Score

7^/10

collection spyware stealer

Malware Config

Targets

- Target
  
  NEW ORDER FILE.bat
- Size
  
  1.7MB
- MD5
  
  d6af0bfbb45c5d0b02613fb9347210c5
- SHA1
  
  e7192006d2bd1de89e9a18de2cda62e8b6ceb0c6
- SHA256
  
  9848b1d683d2014c2b8a87ffb00f8d82b781f7f76d243a997a39e7864a49468d
- SHA512
  
  4aa5a9da343ed676d7f2b14a76a13e26546dcde7e345d8f3e02f89f9b8631c756a0cc30eb1dd21a1515f75e16dd4065d88fba130282c88c70e3fddb80fdeab93
- SSDEEP
  
  24576:Xd0nFJzwsyF4bjlnttBX7cu1ms60MXNcB7ZKMzqAML2Z8XWNzQgBBCVY9yFxwCg4:kFZyAz2aZJxPt2gB0w2Slq
Score

7^/10

collection spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses Microsoft Outlook profiles
  collection
behavioral1 behavioral2
- Target
  
  NEW ORDER FILE1.exe
- Size
  
  370KB
- MD5
  
  e605ce827ace0aa2cc096965597c0a45
- SHA1
  
  0d34649e1c4ca83e9e5ce57648e4b4fd0ae05689
- SHA256
  
  625baa4a239a4b0a094ae64b2db0a37ef800ba6cd469728dcf86cb3c0f53f9cc
- SHA512
  
  4a3672c5e5dfd8d540a73202cc66e849ab15561215d617e790906bf3abb16538bdf09cab973b54f654abf3cb2ecec1a0c82d1e4d4bb6a5fdf8e9f6cd8a3d280b
- SSDEEP
  
  6144:pIkPdJwXW1D6ShqSxDj4tVw80oa/Vzp5Yo2jNvg0HKBzbsBhf5:pAsxDj4X/ux0NUU5
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

collectionspywarestealer

behavioral3

behavioral4