89a8743ee14d50c58f0626b0383c073bf85e4bb5da26fd0a1daadcdbe8c45dac | Triage

Resubmissions

12/10/2023, 21:04

231012-zwn31abe6t 7

Sharing

Copy URL Twitter E-mail

General

Target

snake_eater.7z
Size

6.7MB
Sample

231012-zwn31abe6t
MD5

060007a3d46c47679b9b9146b48c35cf
SHA1

21c32640428b4e07835a34c4795f9bd26cd365a3
SHA256

89a8743ee14d50c58f0626b0383c073bf85e4bb5da26fd0a1daadcdbe8c45dac
SHA512

bf76db6e6a1fefb88dd442e07260497433b8bd638a1b64851bb068f4780c6bf60e300b4f6f9d5e26111ac39ac2cf3022676b8773ba24edd74aef9e6063bf63ae
SSDEEP

98304:YsUUYUhtPVheiEc4q0Dak6wNPGwzDJXZk5FzX4kqPcq7JXvOHbNX8ugLsAEITc:YtstPVEsJqP3Dw5KIBsmic

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  snake_eater.exe
- Size
  
  6.9MB
- MD5
  
  52eaabffa4a20fecb4c50a937e720e7d
- SHA1
  
  e5869e376e230d8c5b0f7181ac19f191895c30b4
- SHA256
  
  dd042c46ccab1eef92c289498b7825694a6aab6e04a093b2244b126af01c01fa
- SHA512
  
  31f3cd78fbb74e351f80dc09cac4d7355b0d0f688613a99574f8b104ef51050e57b3c03dbb22c6ab8d4be679df951257111a5190ab111a4b9787dd2228c2184a
- SSDEEP
  
  98304:+aC8fWQRkhUsdDwG1eFsr7/9YuPlcGxH0Ig17E3AAy5tx5KD/SSvzJT1aOcUoS:+aCYk6YDwGcs9jtcGfcY3gtA71Zc
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2
- Target
  
  snake_eater.pyc
- Size
  
  7KB
- MD5
  
  c8bf7509904761a4317f33ed6118b3fa
- SHA1
  
  990bd77939ed4c65ad1a1f51beae195e82bdac52
- SHA256
  
  a89e7144b5a6100011da10f352e11778c1dc08374629378a9f6d40425c921014
- SHA512
  
  6f3e946e54417f7b926e451a328e4c7c8cfa1399576dd507dd1e736483c8d377608bd05320ed803b3bb4a50d3e7d573bb66f8dcaa0658ecbb8ef2cb37362f649
- SSDEEP
  
  192:dXY/v+kIQWHh/GtyfQK1Eg5baP5939BJX7JLcLL1lm:dXGgVdGtyfh1Eg5baP5h93rMHm
Score

3^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4