503e5ef63636254bb35f7c79da99d83e773e5fd8f0217c861f95bd551f28c244 | Triage

Sharing

General

Target

NEAS.887b7c81aeee919f91674242908faf60.exe
Size

499KB
Sample

231021-z9p78afa3y
MD5

887b7c81aeee919f91674242908faf60
SHA1

25b63685ae6a634e6299e127bbf04d09be158f3b
SHA256

503e5ef63636254bb35f7c79da99d83e773e5fd8f0217c861f95bd551f28c244
SHA512

7fff463cdc11038786ff956caed5889458604c33eb4693c27e4921ed5d69b7e9cf86c90eb6ab31ae63afb4ef751a059aa1195e2ab81b131b25f8dd0297cc6838
SSDEEP

12288:jLAqg0CqojLWyvfTVkzp42wpCq5fIuDLhsz9ULR:jLzg0DwLWyvb2zp4FpCWVhsz9UL

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  NEAS.887b7c81aeee919f91674242908faf60.exe
- Size
  
  499KB
- MD5
  
  887b7c81aeee919f91674242908faf60
- SHA1
  
  25b63685ae6a634e6299e127bbf04d09be158f3b
- SHA256
  
  503e5ef63636254bb35f7c79da99d83e773e5fd8f0217c861f95bd551f28c244
- SHA512
  
  7fff463cdc11038786ff956caed5889458604c33eb4693c27e4921ed5d69b7e9cf86c90eb6ab31ae63afb4ef751a059aa1195e2ab81b131b25f8dd0297cc6838
- SSDEEP
  
  12288:jLAqg0CqojLWyvfTVkzp42wpCq5fIuDLhsz9ULR:jLzg0DwLWyvb2zp4FpCWVhsz9UL
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2