f2b14eda7119d93b5731cc063392bd8e1f6d985b5373fe33af69dddf30af4ef3 | Triage

Sharing

General

Target

0233842bfaad8911785b5ca30aa7e2b3.bin
Size

15.6MB
Sample

231113-bcvjnsfc45
MD5

0233842bfaad8911785b5ca30aa7e2b3
SHA1

d94607208a2710e2b87c7e006afab4eb91acecf7
SHA256

f2b14eda7119d93b5731cc063392bd8e1f6d985b5373fe33af69dddf30af4ef3
SHA512

2b8ec6e1d8e37d7179f674d9f2f86b347b5a5f7b1e640cdcbb3511fecb506475d9051db3833a2728a308e668cc5e8e984a1f3772ab1dd84d1b661c5093bb6202
SSDEEP

49152:nUk35li1hrb/TwvO90d7HjmAFd4A64nsfJ+PxMkmBZfqFwiQpEmERRzfz1iG7x4F:/i1sDmBZSeSrRRZ+BLzYhTc

Score

6^/10

spyware

Malware Config

Targets

- Target
  
  0233842bfaad8911785b5ca30aa7e2b3.bin
- Size
  
  15.6MB
- MD5
  
  0233842bfaad8911785b5ca30aa7e2b3
- SHA1
  
  d94607208a2710e2b87c7e006afab4eb91acecf7
- SHA256
  
  f2b14eda7119d93b5731cc063392bd8e1f6d985b5373fe33af69dddf30af4ef3
- SHA512
  
  2b8ec6e1d8e37d7179f674d9f2f86b347b5a5f7b1e640cdcbb3511fecb506475d9051db3833a2728a308e668cc5e8e984a1f3772ab1dd84d1b661c5093bb6202
- SSDEEP
  
  49152:nUk35li1hrb/TwvO90d7HjmAFd4A64nsfJ+PxMkmBZfqFwiQpEmERRzfz1iG7x4F:/i1sDmBZSeSrRRZ+BLzYhTc
Score

6^/10

spyware
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2