0543c305953ef0594c1d0da2f5f9873c483b5933ca69dc99f06b6a1d2bf704b2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

201611b2b79b3211c82be0751fd89cec
Size

730KB
Sample

231225-p5qm3sged4
MD5

201611b2b79b3211c82be0751fd89cec
SHA1

c1bb46308da5441404376bac42e5372b0d6992b7
SHA256

0543c305953ef0594c1d0da2f5f9873c483b5933ca69dc99f06b6a1d2bf704b2
SHA512

9c7f95c8c58ea8d6f40049a2f64d3550b899caae1f158e96235dd03bcf5f63ed7a4297800e7206fbda6ec4dea7fbbb0913681285d03045f3cc2261249bd4baab
SSDEEP

12288:aEB1Sys3MucqthKYB8RYCE2XAqmXpANKLdrH04aGklHVHXeg2X09P:a0Ps3/eYB8G1qmXJLdHWGklHVO7M

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  201611b2b79b3211c82be0751fd89cec
- Size
  
  730KB
- MD5
  
  201611b2b79b3211c82be0751fd89cec
- SHA1
  
  c1bb46308da5441404376bac42e5372b0d6992b7
- SHA256
  
  0543c305953ef0594c1d0da2f5f9873c483b5933ca69dc99f06b6a1d2bf704b2
- SHA512
  
  9c7f95c8c58ea8d6f40049a2f64d3550b899caae1f158e96235dd03bcf5f63ed7a4297800e7206fbda6ec4dea7fbbb0913681285d03045f3cc2261249bd4baab
- SSDEEP
  
  12288:aEB1Sys3MucqthKYB8RYCE2XAqmXpANKLdrH04aGklHVHXeg2X09P:a0Ps3/eYB8G1qmXJLdHWGklHVO7M
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2