fabookie | 7a4d99824f0be690c51bcbb88ea9449cfda966d88ff206a2184e87cbe13fe49d | Triage

Sharing

General

Target

7a4d99824f0be690c51bcbb88ea9449cfda966d88ff206a2184e87cbe13fe49d_JC.exe
Size

334KB
Sample

231012-a6jhtseb6t
MD5

dee364376c8ad99ff1ee640679aaa1be
SHA1

c929fdcae29f30c4853d1e450bef24b122e6be30
SHA256

7a4d99824f0be690c51bcbb88ea9449cfda966d88ff206a2184e87cbe13fe49d
SHA512

8f62cfb3a0b4113be84ca3a949f3e1069e68e2f0147a035a14071373d95cc0758ea2935b18d352f2bd5589be051a2d1afd31f76bcbe86746fb1219c6afbce483
SSDEEP

6144:zFZ8RIT6Eam4StJ3rXDf49Zu7SkDoPiaODgKYleQ4S4P:zIdSXDgjyrMAP

Score

10^/10

fabookie spyware stealer

Malware Config

Extracted

Family

fabookie

C2

http://app.nnnaajjjgc.com/check/safe

Targets

- Target
  
  7a4d99824f0be690c51bcbb88ea9449cfda966d88ff206a2184e87cbe13fe49d_JC.exe
- Size
  
  334KB
- MD5
  
  dee364376c8ad99ff1ee640679aaa1be
- SHA1
  
  c929fdcae29f30c4853d1e450bef24b122e6be30
- SHA256
  
  7a4d99824f0be690c51bcbb88ea9449cfda966d88ff206a2184e87cbe13fe49d
- SHA512
  
  8f62cfb3a0b4113be84ca3a949f3e1069e68e2f0147a035a14071373d95cc0758ea2935b18d352f2bd5589be051a2d1afd31f76bcbe86746fb1219c6afbce483
- SSDEEP
  
  6144:zFZ8RIT6Eam4StJ3rXDf49Zu7SkDoPiaODgKYleQ4S4P:zIdSXDgjyrMAP
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer

behavioral2

fabookiespywarestealer