b842080ef401cb64de4b9c7d823ef60b0ed4f4bbd42431fbf26db940ece9f4f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b9abc1d13b8acc62899c1b6ca1780641.exe
Size

1.4MB
Sample

231102-mq4kaacf62
MD5

b9abc1d13b8acc62899c1b6ca1780641
SHA1

5dc010e2102098bd8b173d99dff3ffbb731967cf
SHA256

b842080ef401cb64de4b9c7d823ef60b0ed4f4bbd42431fbf26db940ece9f4f1
SHA512

58f452cdbfc7a7253fd2b99a230f187ff2d4d615eeac811d6878263722f563d9d1556ee0ef41df922ecb577bdd0385e11621d4ce82811f864f6dbca9a1b070c1
SSDEEP

24576:gBHHAmBQmcrj5alRdllZCVoVURXm5JwhjyBtyC6Nv1VqndqUhqat7meX1KI15ZNl:4crj5apllUlR25Jwhj0ty7NqnUUhqatR

Score

6^/10

spyware

Malware Config

Targets

- Target
  
  b9abc1d13b8acc62899c1b6ca1780641.exe
- Size
  
  1.4MB
- MD5
  
  b9abc1d13b8acc62899c1b6ca1780641
- SHA1
  
  5dc010e2102098bd8b173d99dff3ffbb731967cf
- SHA256
  
  b842080ef401cb64de4b9c7d823ef60b0ed4f4bbd42431fbf26db940ece9f4f1
- SHA512
  
  58f452cdbfc7a7253fd2b99a230f187ff2d4d615eeac811d6878263722f563d9d1556ee0ef41df922ecb577bdd0385e11621d4ce82811f864f6dbca9a1b070c1
- SSDEEP
  
  24576:gBHHAmBQmcrj5alRdllZCVoVURXm5JwhjyBtyC6Nv1VqndqUhqat7meX1KI15ZNl:4crj5apllUlR25Jwhj0ty7NqnUUhqatR
Score

6^/10

spyware
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2