a2dcec21960e32bc4383f36d028e6bff32124885ef44f859a205ea6d82bf032f | Triage

Sharing

General

Target

a2dcec21960e32bc4383f36d028e6bff32124885ef44f859a205ea6d82bf032f
Size

1.1MB
Sample

231123-pebq8sae7v
MD5

db1c8043dca75f50b4589b2ee68d7eaf
SHA1

ab089a8ad244b33cca1c5b48e67e5e7d87f6aa49
SHA256

a2dcec21960e32bc4383f36d028e6bff32124885ef44f859a205ea6d82bf032f
SHA512

bddf87d023c01c8bc445d5ed4b7d7fbb33f7e616c08f67049bb93a5e6053a3aff1018d410a5ece2c7d56862c73c1e14f040e19e618e3819d5c63256fa21c56a1
SSDEEP

24576:vq1kYgbWSenN7ueOP6OXYK5097OLp8mUMS/lphj4coCPHbRYLgD:k2uN7uzPLd8mUz/lXUcoSuy

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  a2dcec21960e32bc4383f36d028e6bff32124885ef44f859a205ea6d82bf032f
- Size
  
  1.1MB
- MD5
  
  db1c8043dca75f50b4589b2ee68d7eaf
- SHA1
  
  ab089a8ad244b33cca1c5b48e67e5e7d87f6aa49
- SHA256
  
  a2dcec21960e32bc4383f36d028e6bff32124885ef44f859a205ea6d82bf032f
- SHA512
  
  bddf87d023c01c8bc445d5ed4b7d7fbb33f7e616c08f67049bb93a5e6053a3aff1018d410a5ece2c7d56862c73c1e14f040e19e618e3819d5c63256fa21c56a1
- SSDEEP
  
  24576:vq1kYgbWSenN7ueOP6OXYK5097OLp8mUMS/lphj4coCPHbRYLgD:k2uN7uzPLd8mUz/lXUcoSuy
Score

7^/10

spyware stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2