4c22cb3af8b52cf2ec1c340af1cde89a3b5f3ff0e813d706b4378c629136551f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c22cb3af8b52cf2ec1c340af1cde89a3b5f3ff0e813d706b4378c629136551f
Size

2.6MB
Sample

231022-bwmyyacg8x
MD5

f96830b1be2223139f9fda0c89c6015d
SHA1

fcb3d23d5717e892a1daabc66bcaad8b1de0b0d2
SHA256

4c22cb3af8b52cf2ec1c340af1cde89a3b5f3ff0e813d706b4378c629136551f
SHA512

2f02bae929a324b40185064388cc3d180da90489d17aab9ce808e546e020c886058e9bb97d47b34fbee169ba65555ba77cfed3ad81d3e73678589d5e96025a60
SSDEEP

49152:OaAKmplVp19xZ+Xy+NxkNLrizqq5Xk7EpXhEQTZ1lsc07P1w36nbwcrrMhfvXXL:jvmln9xZwNxklIqiXX21w36b/0nXbA

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  4c22cb3af8b52cf2ec1c340af1cde89a3b5f3ff0e813d706b4378c629136551f
- Size
  
  2.6MB
- MD5
  
  f96830b1be2223139f9fda0c89c6015d
- SHA1
  
  fcb3d23d5717e892a1daabc66bcaad8b1de0b0d2
- SHA256
  
  4c22cb3af8b52cf2ec1c340af1cde89a3b5f3ff0e813d706b4378c629136551f
- SHA512
  
  2f02bae929a324b40185064388cc3d180da90489d17aab9ce808e546e020c886058e9bb97d47b34fbee169ba65555ba77cfed3ad81d3e73678589d5e96025a60
- SSDEEP
  
  49152:OaAKmplVp19xZ+Xy+NxkNLrizqq5Xk7EpXhEQTZ1lsc07P1w36nbwcrrMhfvXXL:jvmln9xZwNxklIqiXX21w36b/0nXbA
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2