Overview

overview

10

Static

static

3

bf8092550a...aa.exe

windows7-x64

10

bf8092550a...aa.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bf8092550afdf596dd95e8c38bc93b2fe7244dcac48fb2b95a2e1487c45cd9aa

  • Size

    344KB

  • Sample

    231011-lxa1wafb8t

  • MD5

    cb0539087313ba3cdcaf045c3fc0ec94

  • SHA1

    4642fa6703b40c4402dfa400d727d54f1b6f7c92

  • SHA256

    cf8493ae7bf22220fa61ab0dbe1a81a658c895da9c652373a495bf1eae154470

  • SHA512

    26f340c3e7a58f7cafa92268253d62cd2294c7aefcf85a889eb180677d035812d14a03a194ff5ac9a05b214900ec5914abb67d11bc690afce9cdcb0d20201314

  • SSDEEP

    6144:qGy6RhKyBcjX5BOe5OIsw0h5rNd5ef2svy4dISEH0sxxYCfKYRgVU8fr5rP1:qGy6RhKyKjpizfsBsEusVUar5R

Score
10/10
fabookiespywarestealer

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Targets

    • Target

      bf8092550afdf596dd95e8c38bc93b2fe7244dcac48fb2b95a2e1487c45cd9aa

    • Size

      636KB

    • MD5

      a1e3d69810e55d924bf8ac091235110c

    • SHA1

      1e200e3485a706cccd366a0587610a82193d435c

    • SHA256

      bf8092550afdf596dd95e8c38bc93b2fe7244dcac48fb2b95a2e1487c45cd9aa

    • SHA512

      d2a4d7e18d91e4732d949a85b055ae3e2b6d675aff525967d63edd904a42b37bfe264ebe20e88ba0d2a19421657743e91ca84a31660dccc7fe7ea837f76463b0

    • SSDEEP

      6144:MfIWs1kdFDIZEkzJwz9OhcHQU8rATKbGHbI0/tGKP15Vuc7GHbI0/tGKP15Vuc1h:ubfatcH5049Duca049Duc1y6

    Score
    10/10
    fabookiespywarestealer

    • Detect Fabookie payload

    • Fabookie

      Fabookie is facebook account info stealer.

      spywarestealerfabookie

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks