fa0d25e391dff959986bf281bce3969e016de55eb5562bbc6a7220f95615da91 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

050eeda336d24f5dd817ee0eec056ec8
Size

176KB
Sample

231225-e2agksfgaj
MD5

050eeda336d24f5dd817ee0eec056ec8
SHA1

cd9ab23ea12e36bf93f118c6869bab00ba7a0c58
SHA256

fa0d25e391dff959986bf281bce3969e016de55eb5562bbc6a7220f95615da91
SHA512

a5e1504d0277088ef77c12bfe07a0be3843bf6cd51f0511612cfa7b6494fb35bc39dec16113772792192494e7d40d11c6c2d72a28b55faf0c5ff44d2267bc01d
SSDEEP

3072:TQV5PYIDlNTUnDds+jEVBzjV17w2UyH6aqGlmu35HigzlKIjZ1ewaUFkwcu8nTw:EVbDlNTUnDdJwl517w2UyaTGcupHiTIp

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  050eeda336d24f5dd817ee0eec056ec8
- Size
  
  176KB
- MD5
  
  050eeda336d24f5dd817ee0eec056ec8
- SHA1
  
  cd9ab23ea12e36bf93f118c6869bab00ba7a0c58
- SHA256
  
  fa0d25e391dff959986bf281bce3969e016de55eb5562bbc6a7220f95615da91
- SHA512
  
  a5e1504d0277088ef77c12bfe07a0be3843bf6cd51f0511612cfa7b6494fb35bc39dec16113772792192494e7d40d11c6c2d72a28b55faf0c5ff44d2267bc01d
- SSDEEP
  
  3072:TQV5PYIDlNTUnDds+jEVBzjV17w2UyH6aqGlmu35HigzlKIjZ1ewaUFkwcu8nTw:EVbDlNTUnDdJwl517w2UyaTGcupHiTIp
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2