4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

4aaf7bbc27...17.exe

windows7-x64

7

4aaf7bbc27...17.exe

windows10-2004-x64

7

Sharing

General

Target

4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617
Size

1.8MB
Sample

231126-kxjgksgb7t
MD5

79485a08b6a05ab48273382e4ba311b6
SHA1

2905d7b36266bfe8fbfdd5adef98b28e6a783075
SHA256

4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617
SHA512

8ece2a6923faef106bd8e6c6dc06e4e1d4a5588664307c84dec0e3c7eb8a239a6db62bed04b655e86bbe4bf483352fb0b8fdafad6a725b958114b5cfb73f2e3e
SSDEEP

49152:kM9QPdxwfE7WlFwKAfzuTiDFUFkA7GAK/tlRtYLat:k1PdVQFwKZCFgMRt6at

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe

Resource

win7-20231023-en

spyware stealer

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617.exe

Resource

win10v2004-20231023-en

spyware stealer

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617
- Size
  
  1.8MB
- MD5
  
  79485a08b6a05ab48273382e4ba311b6
- SHA1
  
  2905d7b36266bfe8fbfdd5adef98b28e6a783075
- SHA256
  
  4aaf7bbc27631a0446881e2b8e01f72b1a741c0316b4f4f36a14b033781a9617
- SHA512
  
  8ece2a6923faef106bd8e6c6dc06e4e1d4a5588664307c84dec0e3c7eb8a239a6db62bed04b655e86bbe4bf483352fb0b8fdafad6a725b958114b5cfb73f2e3e
- SSDEEP
  
  49152:kM9QPdxwfE7WlFwKAfzuTiDFUFkA7GAK/tlRtYLat:k1PdVQFwKZCFgMRt6at
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy