3eae3e3f732979be31f870069f190a6f779d362e935c47bca7842bb4a1fa89d2 | Triage

Sharing

General

Target

064d2e5ff7ba4d02d4aec38fe628d722
Size

1.6MB
Sample

231225-fjnf6acca2
MD5

064d2e5ff7ba4d02d4aec38fe628d722
SHA1

adcd63b2ed6b9dac46306e0c7439d65a8ea46ead
SHA256

3eae3e3f732979be31f870069f190a6f779d362e935c47bca7842bb4a1fa89d2
SHA512

5a52e374a7a44a2fc0f657d9f27511313d89cc09dd018046bbbe311d7b416349e6b11f5d53a22c52610295f17ad72ebdd32e3aff37a6cf7e320bdaeb667ffbf7
SSDEEP

49152:Y/fwUdeRW1s5ycjkcSZEDghtAkf4tJh8TN3rg:YwUdf1GXj6BGt3h

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  064d2e5ff7ba4d02d4aec38fe628d722
- Size
  
  1.6MB
- MD5
  
  064d2e5ff7ba4d02d4aec38fe628d722
- SHA1
  
  adcd63b2ed6b9dac46306e0c7439d65a8ea46ead
- SHA256
  
  3eae3e3f732979be31f870069f190a6f779d362e935c47bca7842bb4a1fa89d2
- SHA512
  
  5a52e374a7a44a2fc0f657d9f27511313d89cc09dd018046bbbe311d7b416349e6b11f5d53a22c52610295f17ad72ebdd32e3aff37a6cf7e320bdaeb667ffbf7
- SSDEEP
  
  49152:Y/fwUdeRW1s5ycjkcSZEDghtAkf4tJh8TN3rg:YwUdf1GXj6BGt3h
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2