24f30a046e8291f58b44dcd9a4b8d2d26fcb074022cc69f9647b320e4a6b7808 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00d1b52f23df537f04d4b680d09072fc
Size

1.1MB
Sample

231225-c9nytsebh2
MD5

00d1b52f23df537f04d4b680d09072fc
SHA1

b185c6ea8826166e1c7cae2c1f6a568b0cf1667f
SHA256

24f30a046e8291f58b44dcd9a4b8d2d26fcb074022cc69f9647b320e4a6b7808
SHA512

0199078547826a710a44a22a8235cf9dc40f990776f88e37d23b413f5b05bf221cbd80feb843c57574cb53e717774848d4e1406a5110e6543d3e6868e8ec2a5c
SSDEEP

12288:JKaiFc4ybOHHTurfwZjvvJ8Wo/jnN/TjNrlyTkXSkkIasq6Jxj20LST19Kpu4mMk:M9XurfbWOFfN4rRIa2j25T1spDmMk

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  00d1b52f23df537f04d4b680d09072fc
- Size
  
  1.1MB
- MD5
  
  00d1b52f23df537f04d4b680d09072fc
- SHA1
  
  b185c6ea8826166e1c7cae2c1f6a568b0cf1667f
- SHA256
  
  24f30a046e8291f58b44dcd9a4b8d2d26fcb074022cc69f9647b320e4a6b7808
- SHA512
  
  0199078547826a710a44a22a8235cf9dc40f990776f88e37d23b413f5b05bf221cbd80feb843c57574cb53e717774848d4e1406a5110e6543d3e6868e8ec2a5c
- SSDEEP
  
  12288:JKaiFc4ybOHHTurfwZjvvJ8Wo/jnN/TjNrlyTkXSkkIasq6Jxj20LST19Kpu4mMk:M9XurfbWOFfN4rRIa2j25T1spDmMk
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2