055825fab1dbd6721340cc68eba9b8366e1d03ebe56009f7286a99bc82b3814f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

055825fab1dbd6721340cc68eba9b8366e1d03ebe56009f7286a99bc82b3814f
Size

2.6MB
Sample

231011-zbzc8sbh7v
MD5

3cf5940ca642ef262f6cbe839b756376
SHA1

2784cd52be38a2bd64ce834851402e55ede3fbee
SHA256

055825fab1dbd6721340cc68eba9b8366e1d03ebe56009f7286a99bc82b3814f
SHA512

b0d383aabdaf11b877592619e7458db22b188fc4474f667d3aabd52e71953b471a65e6bd6999c241d35d9e82c8146b02798af4bc87ef40337efe2cab96768067
SSDEEP

49152:L80s66bYp+wBEXbJBTmSGWIQ+0ZJT6jSjhTSGIo8Y70tphDcKNacWwBuJmM:L80v0wBwJlm/WIUfT6m2t0K2wAY

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  055825fab1dbd6721340cc68eba9b8366e1d03ebe56009f7286a99bc82b3814f
- Size
  
  2.6MB
- MD5
  
  3cf5940ca642ef262f6cbe839b756376
- SHA1
  
  2784cd52be38a2bd64ce834851402e55ede3fbee
- SHA256
  
  055825fab1dbd6721340cc68eba9b8366e1d03ebe56009f7286a99bc82b3814f
- SHA512
  
  b0d383aabdaf11b877592619e7458db22b188fc4474f667d3aabd52e71953b471a65e6bd6999c241d35d9e82c8146b02798af4bc87ef40337efe2cab96768067
- SSDEEP
  
  49152:L80s66bYp+wBEXbJBTmSGWIQ+0ZJT6jSjhTSGIo8Y70tphDcKNacWwBuJmM:L80v0wBwJlm/WIUfT6m2t0K2wAY
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2