20d400ad36d39d6fe2bf55e5819d6fd002553600c6c624de8545fb0aa4ab197f | Triage

Sharing

General

Target

47c3f5d6681db7b569fa8f5199c0ebcb
Size

1.1MB
Sample

231226-be8t3shgb8
MD5

47c3f5d6681db7b569fa8f5199c0ebcb
SHA1

061793c98df3238e91c7c46005fe5da3cf5f311c
SHA256

20d400ad36d39d6fe2bf55e5819d6fd002553600c6c624de8545fb0aa4ab197f
SHA512

e6d1cb454bed7849897371d3c913a62410ab37c66763b1e03a81dd419e322d5e4416c5dd0de7d4b1430809e08c89fb51dc1faefa44614789cc6e294d1ee6829c
SSDEEP

24576:IN+l/5qyr4GjMSd1VLV95xvMSWdmj3vZV/JkwaTae8xwTKHij3tw:I0x/sGjn1VL5xvdGmj3vH/JkdZkwTWiR

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  47c3f5d6681db7b569fa8f5199c0ebcb
- Size
  
  1.1MB
- MD5
  
  47c3f5d6681db7b569fa8f5199c0ebcb
- SHA1
  
  061793c98df3238e91c7c46005fe5da3cf5f311c
- SHA256
  
  20d400ad36d39d6fe2bf55e5819d6fd002553600c6c624de8545fb0aa4ab197f
- SHA512
  
  e6d1cb454bed7849897371d3c913a62410ab37c66763b1e03a81dd419e322d5e4416c5dd0de7d4b1430809e08c89fb51dc1faefa44614789cc6e294d1ee6829c
- SSDEEP
  
  24576:IN+l/5qyr4GjMSd1VLV95xvMSWdmj3vZV/JkwaTae8xwTKHij3tw:I0x/sGjn1VL5xvdGmj3vH/JkdZkwTWiR
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2