80de038fa8ee564ad91ec09be420fcc9ad97cb28874c2f3aa7dd994625deec3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

161ff7ba1c8b2692c5a5cd36b68c7a02
Size

6.7MB
Sample

231219-nsjtbschel
MD5

161ff7ba1c8b2692c5a5cd36b68c7a02
SHA1

84b826d79dc77c9c501ff3eadb6af04b19be2850
SHA256

80de038fa8ee564ad91ec09be420fcc9ad97cb28874c2f3aa7dd994625deec3f
SHA512

3424c6944c5e6fe1ffedff9aac4df249c120f6fc01e56a12812db6be892cfa4dd5d1924bdc7c01773e0c6028ea119ce0340e272eae0a3c733d19f2e390d445ce
SSDEEP

98304:PUKKmD+eNEn9TAn9TiyVPKA/n9TBfUbX7fUbX0:PUKKAEn9TAn9Tvn9TBfUffUY

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  161ff7ba1c8b2692c5a5cd36b68c7a02
- Size
  
  6.7MB
- MD5
  
  161ff7ba1c8b2692c5a5cd36b68c7a02
- SHA1
  
  84b826d79dc77c9c501ff3eadb6af04b19be2850
- SHA256
  
  80de038fa8ee564ad91ec09be420fcc9ad97cb28874c2f3aa7dd994625deec3f
- SHA512
  
  3424c6944c5e6fe1ffedff9aac4df249c120f6fc01e56a12812db6be892cfa4dd5d1924bdc7c01773e0c6028ea119ce0340e272eae0a3c733d19f2e390d445ce
- SSDEEP
  
  98304:PUKKmD+eNEn9TAn9TiyVPKA/n9TBfUbX7fUbX0:PUKKAEn9TAn9Tvn9TBfUffUY
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2