59f8e38f1b4426755a10f761388a4374abe6362466f926eb380ba859ed6c5e13 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cb505607ef18aae1443435381acd0cd
Size

1.1MB
Sample

231225-ttxdpsgca9
MD5

2cb505607ef18aae1443435381acd0cd
SHA1

94da1162fde93f520e147c1773394a82749c9bec
SHA256

59f8e38f1b4426755a10f761388a4374abe6362466f926eb380ba859ed6c5e13
SHA512

f307ea29d3470e2fa6e21d9ab81901d30301fc351219acb8386368eae06e8134ae0330273ea1b09c2be96e3983334793a59ae725fd94aebaf90415abb601fbdc
SSDEEP

12288:JKaiFc4ybOHHTurfwZjvvJ8Wo/jnN/TjNrlyTkXSkkIasq6Jxj20LST19Kpu4mMk:M9XurfbWOFfN4rRIa2j25T1spDmMk

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  2cb505607ef18aae1443435381acd0cd
- Size
  
  1.1MB
- MD5
  
  2cb505607ef18aae1443435381acd0cd
- SHA1
  
  94da1162fde93f520e147c1773394a82749c9bec
- SHA256
  
  59f8e38f1b4426755a10f761388a4374abe6362466f926eb380ba859ed6c5e13
- SHA512
  
  f307ea29d3470e2fa6e21d9ab81901d30301fc351219acb8386368eae06e8134ae0330273ea1b09c2be96e3983334793a59ae725fd94aebaf90415abb601fbdc
- SSDEEP
  
  12288:JKaiFc4ybOHHTurfwZjvvJ8Wo/jnN/TjNrlyTkXSkkIasq6Jxj20LST19Kpu4mMk:M9XurfbWOFfN4rRIa2j25T1spDmMk
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2