fabookie | cdd49cb33511e8f78c0f61246d1dfbe5a8476885d7645b2d2de1c5c00ae29af0 | Triage

Sharing

General

Target

sC55NaHCdLzZ5rjfhJYBy5rb.exe
Size

420KB
Sample

231011-pjf7hsgh98
MD5

269957dbfbcf36be4001d677fae92f9e
SHA1

716f986bd94932c79b033d17764aa3b47baa4fb1
SHA256

cdd49cb33511e8f78c0f61246d1dfbe5a8476885d7645b2d2de1c5c00ae29af0
SHA512

f2ac27603090168f87dfa5455c7d6f5198cafe16f5961c87860e7aeb0802e933d43fab855eb243ee203b817e0e8c016c1272c5aae98d23bded8f6917e37990f3
SSDEEP

6144:ulX73J3gYx1K4iIfO9rDDWe4t0+eoJAbB3T+cbJp:a3JwYHKGq/E0+5cCIJp

Score

10^/10

fabookie spyware stealer

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Targets

- Target
  
  sC55NaHCdLzZ5rjfhJYBy5rb.exe
- Size
  
  420KB
- MD5
  
  269957dbfbcf36be4001d677fae92f9e
- SHA1
  
  716f986bd94932c79b033d17764aa3b47baa4fb1
- SHA256
  
  cdd49cb33511e8f78c0f61246d1dfbe5a8476885d7645b2d2de1c5c00ae29af0
- SHA512
  
  f2ac27603090168f87dfa5455c7d6f5198cafe16f5961c87860e7aeb0802e933d43fab855eb243ee203b817e0e8c016c1272c5aae98d23bded8f6917e37990f3
- SSDEEP
  
  6144:ulX73J3gYx1K4iIfO9rDDWe4t0+eoJAbB3T+cbJp:a3JwYHKGq/E0+5cCIJp
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer

behavioral2

fabookiespywarestealer