5c6bb66f259f0872e5df020ed54b1556312e1e23394c304ce4ea33fc194c9013 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

159bb30ffc3635d18e315df43f1a7135
Size

1.1MB
Sample

231224-2ckmksdabr
MD5

159bb30ffc3635d18e315df43f1a7135
SHA1

b756eb9c4d12d27ecb6343ca321c5c1e6dece039
SHA256

5c6bb66f259f0872e5df020ed54b1556312e1e23394c304ce4ea33fc194c9013
SHA512

2584dbeb2ca073ca8bec1233015d925df56f4c1f1c9cfbeea0b0de447b2f2f56f1920ca323c6cc37277aaac98de558b3f10c06681e390a4259516f7ae018c6ef
SSDEEP

24576:i4oKmf5R/pOCuxGU13IlBwaa6NKHb/JGkYI/8UZ:i4uv/pOCIGk3Ivwaa6IHz0kYM8U

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  159bb30ffc3635d18e315df43f1a7135
- Size
  
  1.1MB
- MD5
  
  159bb30ffc3635d18e315df43f1a7135
- SHA1
  
  b756eb9c4d12d27ecb6343ca321c5c1e6dece039
- SHA256
  
  5c6bb66f259f0872e5df020ed54b1556312e1e23394c304ce4ea33fc194c9013
- SHA512
  
  2584dbeb2ca073ca8bec1233015d925df56f4c1f1c9cfbeea0b0de447b2f2f56f1920ca323c6cc37277aaac98de558b3f10c06681e390a4259516f7ae018c6ef
- SSDEEP
  
  24576:i4oKmf5R/pOCuxGU13IlBwaa6NKHb/JGkYI/8UZ:i4uv/pOCIGk3Ivwaa6IHz0kYM8U
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2