3a8c0506d87b59946bb6c5e76200a7e463bb86bca833ffc076e78c2af3410db0 | Triage

Sharing

General

Target

16a8de6034f1bba17e1dbef2554c3508
Size

1.1MB
Sample

231224-2nxraafccl
MD5

16a8de6034f1bba17e1dbef2554c3508
SHA1

79bbc809d80f4f373d0dfc5d4bc6cd79fb3ce333
SHA256

3a8c0506d87b59946bb6c5e76200a7e463bb86bca833ffc076e78c2af3410db0
SHA512

aa6cdc833495507d41af297fd75b423ea80601f0a1dbe1ec62cd6edcc7d68404bd5b10a4ba1aed45550bfec038953096606bec602995b934b8feacdef3a3ac32
SSDEEP

12288:JKaiFc4ybOHHTurfwZjvvJ8Wo/jnN/TjNrlyTkXSkkIasq6Jxj20LST19Kpu4mMk:M9XurfbWOFfN4rRIa2j25T1spDmMk

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  16a8de6034f1bba17e1dbef2554c3508
- Size
  
  1.1MB
- MD5
  
  16a8de6034f1bba17e1dbef2554c3508
- SHA1
  
  79bbc809d80f4f373d0dfc5d4bc6cd79fb3ce333
- SHA256
  
  3a8c0506d87b59946bb6c5e76200a7e463bb86bca833ffc076e78c2af3410db0
- SHA512
  
  aa6cdc833495507d41af297fd75b423ea80601f0a1dbe1ec62cd6edcc7d68404bd5b10a4ba1aed45550bfec038953096606bec602995b934b8feacdef3a3ac32
- SSDEEP
  
  12288:JKaiFc4ybOHHTurfwZjvvJ8Wo/jnN/TjNrlyTkXSkkIasq6Jxj20LST19Kpu4mMk:M9XurfbWOFfN4rRIa2j25T1spDmMk
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2