884fd1281078bf84ec7e5d5504249c7d5ff5304092d4565a7b263aec9acff54d | Triage

Resubmissions

30-10-2023 21:04

231030-zwlmwafb7y 7

30-10-2023 21:03

231030-zwawdafb7w 7

30-10-2023 21:00

231030-zte3bahb57 7

30-10-2023 20:57

231030-zr3etsfb51 7

30-10-2023 20:19

231030-y38kjsfa31 7

Sharing

General

Target

snake_eaterII.7z
Size

6.7MB
Sample

231030-zwlmwafb7y
MD5

adaf9e8fcd85917a78e8ac09b396fa30
SHA1

6b8e9b64f9e9d6a211720709f3ebba70ebb195e7
SHA256

884fd1281078bf84ec7e5d5504249c7d5ff5304092d4565a7b263aec9acff54d
SHA512

791a9abb814b31982a9bd2dee73fe950ffaf3fa050fab9b54d802a79cd878ca8d3d2c2c59006c9f21db21dd975cbb1f1ec52f63de8a9bba5a5aa91a26e79aebc
SSDEEP

196608:OP/hiWNkb1Jr3KjSJlPT9Z0Tr6z+gvT/Zw1iaQnYj:upkRZajSz5ZIuz+gvTGYaQnu

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  snake_eaterII.exe
- Size
  
  6.9MB
- MD5
  
  bf8992602fb929f15c856fa33b683153
- SHA1
  
  6fb6587d3e13c10381a873df89adaa759ad0e024
- SHA256
  
  803441e8f57b727a4eb403be2a4088b99b1877bb45a80de37e80df4442a1f8f7
- SHA512
  
  f8209489e95ac9df5c401865838e864a79397a3c97ac07bbaf0a98e8719b1547b99d7ee479b04e5501d2f57f6c927ef1f364b62b3c54d9be29b88f0f86f31ee4
- SSDEEP
  
  98304:Kak8YWQRkhUsdDwG1eFsr7/9YKPlcGxH0Ig17E3AAy5tx5KD/SSvzJT1aOcUoS:Kak9k6YDwGcs9VtcGfcY3gtA71Zc
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2