e43166baa8697e62bdb7563a6e230def0496c989b58c5fb61cc4c093c374362c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19960fb0194d330e9d493b40f451dc07
Size

1.6MB
Sample

231225-m73z3scbd5
MD5

19960fb0194d330e9d493b40f451dc07
SHA1

e239573ab18923d3cf6f96038939426bb95ee302
SHA256

e43166baa8697e62bdb7563a6e230def0496c989b58c5fb61cc4c093c374362c
SHA512

864de027d069d8d5d80d8e2bdcc4f07d02e52397f40c9ac5179b66e562b347cb282b793ac3916a847c12e964ff38934b145e922ad98a673d057840ebfc8db35b
SSDEEP

49152:f/fwUdoP8/QnXQLqs4CEgHhAWkf6tvk4TX9rl:fwUdd/0ALq+O6tco

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  19960fb0194d330e9d493b40f451dc07
- Size
  
  1.6MB
- MD5
  
  19960fb0194d330e9d493b40f451dc07
- SHA1
  
  e239573ab18923d3cf6f96038939426bb95ee302
- SHA256
  
  e43166baa8697e62bdb7563a6e230def0496c989b58c5fb61cc4c093c374362c
- SHA512
  
  864de027d069d8d5d80d8e2bdcc4f07d02e52397f40c9ac5179b66e562b347cb282b793ac3916a847c12e964ff38934b145e922ad98a673d057840ebfc8db35b
- SSDEEP
  
  49152:f/fwUdoP8/QnXQLqs4CEgHhAWkf6tvk4TX9rl:fwUdd/0ALq+O6tco
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2