e662d7869dc51b5a75af09fa29327a30fa3a18b388d9c4ca8b425e9884cf14f2 | Triage

Sharing

General

Target

08af350036c437cf4c25db00c0b6b267
Size

232KB
Sample

231225-gcxa6ahfg9
MD5

08af350036c437cf4c25db00c0b6b267
SHA1

5a1a6e24e59eaab9af037451b53c9a02a153c9e0
SHA256

e662d7869dc51b5a75af09fa29327a30fa3a18b388d9c4ca8b425e9884cf14f2
SHA512

d0cf3a0f99088dfeb34c923b34bea8febddf551fff01634e22e67f6302a1b15b0c2ecbb4ff92ac21bb22e306262159f91691e722f975070b3b88eda4ea88235d
SSDEEP

6144:bZfaGHXxGkvWFvGQ2+8RifCh60unTBY2U4Q:5aCWN2XifChvunTbU

Score

7^/10

persistence spyware stealer

Malware Config

Targets

- Target
  
  08af350036c437cf4c25db00c0b6b267
- Size
  
  232KB
- MD5
  
  08af350036c437cf4c25db00c0b6b267
- SHA1
  
  5a1a6e24e59eaab9af037451b53c9a02a153c9e0
- SHA256
  
  e662d7869dc51b5a75af09fa29327a30fa3a18b388d9c4ca8b425e9884cf14f2
- SHA512
  
  d0cf3a0f99088dfeb34c923b34bea8febddf551fff01634e22e67f6302a1b15b0c2ecbb4ff92ac21bb22e306262159f91691e722f975070b3b88eda4ea88235d
- SSDEEP
  
  6144:bZfaGHXxGkvWFvGQ2+8RifCh60unTBY2U4Q:5aCWN2XifChvunTbU
Score

7^/10

persistence spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistencespywarestealer

behavioral2

persistencespywarestealer