b87fd3c98383089618d2f66cbbecd2b0ed91db6923135235eb52a671f8dd7cb6 | Triage

Resubmissions

26-11-2023 10:39

231126-mp763sgh7x 7

20-11-2023 15:34

231120-szwhxshf9x 7

Sharing

General

Target

b87fd3c98383089618d2f66cbbecd2b0ed91db6923135235eb52a671f8dd7cb6
Size

2.3MB
Sample

231126-mp763sgh7x
MD5

d56df2995b539368495f3300e48d8e18
SHA1

8d2d02923afb5fb5e09ce1592104db17a3128246
SHA256

b87fd3c98383089618d2f66cbbecd2b0ed91db6923135235eb52a671f8dd7cb6
SHA512

2b25f9b2ff56abafcd8aa0a5fbae4ea78e9e95cec3d4cb832a7a3c5ec13af7d9ecf3ef26ec5c7144805868801aacb8de4113490c3bd665fda4e23ec05b9d8008
SSDEEP

49152:5u2s5FXQ4EmojLjCRELVf7Avil+dHIsLp1thIikN+6u2hsC:5+zX71oDCRAZUviAHImDqia7hsC

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  b87fd3c98383089618d2f66cbbecd2b0ed91db6923135235eb52a671f8dd7cb6
- Size
  
  2.3MB
- MD5
  
  d56df2995b539368495f3300e48d8e18
- SHA1
  
  8d2d02923afb5fb5e09ce1592104db17a3128246
- SHA256
  
  b87fd3c98383089618d2f66cbbecd2b0ed91db6923135235eb52a671f8dd7cb6
- SHA512
  
  2b25f9b2ff56abafcd8aa0a5fbae4ea78e9e95cec3d4cb832a7a3c5ec13af7d9ecf3ef26ec5c7144805868801aacb8de4113490c3bd665fda4e23ec05b9d8008
- SSDEEP
  
  49152:5u2s5FXQ4EmojLjCRELVf7Avil+dHIsLp1thIikN+6u2hsC:5+zX71oDCRAZUviAHImDqia7hsC
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2