3eda5c1e07b1405099763ae4ac1a30d1c1899e929b91600752e9426ae684e581 | Triage

Sharing

General

Target

NEAS.3a365e459cf63b05884e3dfd4737db90.exe
Size

254KB
Sample

231014-wfeb3sbc23
MD5

3a365e459cf63b05884e3dfd4737db90
SHA1

086669b2db302deef100e557f3bd7770151686db
SHA256

3eda5c1e07b1405099763ae4ac1a30d1c1899e929b91600752e9426ae684e581
SHA512

af7a1cbe394c3101dc3c34a05c9cb04099f552448bdc050742807967ffc5a8e6f99dd70f396c0e7adf8d405d0c4b27eff06b722c64eb63d3122112ff00d1836d
SSDEEP

6144:U+hwmta2uJd39/vF9C5TtvImGuXbMTR8XOYvW:6w9UdFdA3O/TGXXW

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  NEAS.3a365e459cf63b05884e3dfd4737db90.exe
- Size
  
  254KB
- MD5
  
  3a365e459cf63b05884e3dfd4737db90
- SHA1
  
  086669b2db302deef100e557f3bd7770151686db
- SHA256
  
  3eda5c1e07b1405099763ae4ac1a30d1c1899e929b91600752e9426ae684e581
- SHA512
  
  af7a1cbe394c3101dc3c34a05c9cb04099f552448bdc050742807967ffc5a8e6f99dd70f396c0e7adf8d405d0c4b27eff06b722c64eb63d3122112ff00d1836d
- SSDEEP
  
  6144:U+hwmta2uJd39/vF9C5TtvImGuXbMTR8XOYvW:6w9UdFdA3O/TGXXW
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2