534b763400f499b3f380607e1cac3668d896379f39761e69049bdcdb9f752040 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0af12ec40ab58b858d2c52ebf4861941
Size

1.1MB
Sample

231224-wt4twseear
MD5

0af12ec40ab58b858d2c52ebf4861941
SHA1

bd9d66d8666f0f070e05052d32ff7beefe729b16
SHA256

534b763400f499b3f380607e1cac3668d896379f39761e69049bdcdb9f752040
SHA512

5e44562be81965d4c191598f8c5ceab1832f179683dd6582f6c4d001ca71ff57249ef47a36bf25d3189d7bd114191623fe827e3c997de0a52a5b38ebe0ade338
SSDEEP

24576:5HU5gX549yRs5+nw3kLFwwCNT/XGbsmazo:pIozRs5+nGkL2TPvma

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  0af12ec40ab58b858d2c52ebf4861941
- Size
  
  1.1MB
- MD5
  
  0af12ec40ab58b858d2c52ebf4861941
- SHA1
  
  bd9d66d8666f0f070e05052d32ff7beefe729b16
- SHA256
  
  534b763400f499b3f380607e1cac3668d896379f39761e69049bdcdb9f752040
- SHA512
  
  5e44562be81965d4c191598f8c5ceab1832f179683dd6582f6c4d001ca71ff57249ef47a36bf25d3189d7bd114191623fe827e3c997de0a52a5b38ebe0ade338
- SSDEEP
  
  24576:5HU5gX549yRs5+nw3kLFwwCNT/XGbsmazo:pIozRs5+nGkL2TPvma
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2