7e0162721439a77939d24568009f218ca3d5a9cb3ca2440d11ac80bb686cd970 | Triage

Sharing

General

Target

7e0162721439a77939d24568009f218ca3d5a9cb3ca2440d11ac80bb686cd970
Size

2.6MB
Sample

231121-1vtgrsgg85
MD5

30b504d56068638bde6347aa2c5b7760
SHA1

32757bcee224a12fdce95c4b18e8c54d0b8a4972
SHA256

7e0162721439a77939d24568009f218ca3d5a9cb3ca2440d11ac80bb686cd970
SHA512

1144f98e964f3ffc104b2ef7c1df4eb36c031316d3882c54152a2ecf449e2a033508b300decc96231cc6a2ef4e62bc16a925d1549fa449aace3939d1016ea2b6
SSDEEP

49152:ld3wtz7n6udGdfowlx2wpXwLsqlra6WyN+T14so9Nt7O7v1hVWzYCCjpwkDUlz:ld3wtDGOwndqle6Vk1hQ8D

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  7e0162721439a77939d24568009f218ca3d5a9cb3ca2440d11ac80bb686cd970
- Size
  
  2.6MB
- MD5
  
  30b504d56068638bde6347aa2c5b7760
- SHA1
  
  32757bcee224a12fdce95c4b18e8c54d0b8a4972
- SHA256
  
  7e0162721439a77939d24568009f218ca3d5a9cb3ca2440d11ac80bb686cd970
- SHA512
  
  1144f98e964f3ffc104b2ef7c1df4eb36c031316d3882c54152a2ecf449e2a033508b300decc96231cc6a2ef4e62bc16a925d1549fa449aace3939d1016ea2b6
- SSDEEP
  
  49152:ld3wtz7n6udGdfowlx2wpXwLsqlra6WyN+T14so9Nt7O7v1hVWzYCCjpwkDUlz:ld3wtDGOwndqle6Vk1hQ8D
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2