General

  • Target

    b6d0b0dd27c5a81ca7a1655975c624025c0961080fd779558071371b14906f3e

  • Size

    344KB

  • Sample

    231011-lxd3jafb9x

  • MD5

    31db5786e443b0a1d7386d675d2acad8

  • SHA1

    62c93fa647415459edf50e257648d81de78ff969

  • SHA256

    adb7117414b0da528c0a7f5abf14b015624cf31d0e087ef66b0762cc5ac0e1c9

  • SHA512

    5529d14044846a12669b768bb056c7a9bf488be2abebde578015b82fa72282822f707de46debfddec583cd2c07f1800fc899cdbc89f4199206b12bb19c347854

  • SSDEEP

    6144:QGy6RhKyBcjX5B3umK04oqAh0mKCtQZFJUU9EA/LKtqkDSGl+xRmPq5:QGy6RhKyKjpj4ox0mp8/UUjD6+eU5

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Targets

    • Target

      b6d0b0dd27c5a81ca7a1655975c624025c0961080fd779558071371b14906f3e

    • Size

      636KB

    • MD5

      ee986ee5678d75f306df179bc703912d

    • SHA1

      84cedd4a3438a5600c3c8790a050fb0234170530

    • SHA256

      b6d0b0dd27c5a81ca7a1655975c624025c0961080fd779558071371b14906f3e

    • SHA512

      bfec47ee343b614e0e675f923a13765d5cdda63a07be4e9999354ade2e8e5327218c04190916d86582b614fc7e4ea88a7fab595850c697c710e47400100e5190

    • SSDEEP

      6144:MfIWs1kdFDIZ4kzJwz9OhcHQU8rATKbGHbI0/tGKP15Vuc7GHbI0/tGKP15Vuc1h:ubfetcH5049Duca049Duc1y6

    • Detect Fabookie payload

    • Fabookie

      Fabookie is facebook account info stealer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks