39ec888f14a32ee8d86e3b1a0fb537380ae7569ef8227830e9482ce068a74003 | Triage

Sharing

General

Target

05e722cae151a6aa0eec327c16dc36cc
Size

1.6MB
Sample

231224-t19bvadeh5
MD5

05e722cae151a6aa0eec327c16dc36cc
SHA1

1a1d8f7bedceeb05f088e164f144a8c76389a905
SHA256

39ec888f14a32ee8d86e3b1a0fb537380ae7569ef8227830e9482ce068a74003
SHA512

3509362f988bed3229e096ccb1fede5d735c95741cdce92b1f98a7cc9ba4491985f90842b57b7df7abe80ff1734cff9ec16665250f265b88f6c5f82254c2cd39
SSDEEP

49152:wil10spOIUcuzvFWiFbFPIakEfREyqcjFBT4WDTtO3jnbIB:VlrnUcMWeE6jrThUjbs

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  05e722cae151a6aa0eec327c16dc36cc
- Size
  
  1.6MB
- MD5
  
  05e722cae151a6aa0eec327c16dc36cc
- SHA1
  
  1a1d8f7bedceeb05f088e164f144a8c76389a905
- SHA256
  
  39ec888f14a32ee8d86e3b1a0fb537380ae7569ef8227830e9482ce068a74003
- SHA512
  
  3509362f988bed3229e096ccb1fede5d735c95741cdce92b1f98a7cc9ba4491985f90842b57b7df7abe80ff1734cff9ec16665250f265b88f6c5f82254c2cd39
- SSDEEP
  
  49152:wil10spOIUcuzvFWiFbFPIakEfREyqcjFBT4WDTtO3jnbIB:VlrnUcMWeE6jrThUjbs
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2

evasionspywarestealertrojan