22029c11d18b6a2305e35adbace4418ae826ea6370a34b2ebe5f9f07f143a366 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6e5030969e4c6caf78be4706858f207a
Size

1.0MB
Sample

231226-plzfwabaar
MD5

6e5030969e4c6caf78be4706858f207a
SHA1

551309895af3493dd169231a959fad375dc6ce55
SHA256

22029c11d18b6a2305e35adbace4418ae826ea6370a34b2ebe5f9f07f143a366
SHA512

05b7f555493c3cf2e970d99ce49d75a3c3b80738d55e5800aeb262476561dff178da06108b6496c8218760ce549ba2d6b2a2bcb61552c3ba0bb587939d2db6fc
SSDEEP

12288:m9cnu4Rfl55oUIJM8jo8F7ZPjQZpodiRQYTaMWMJMsgivxl5+bpNs:CcnuktIJM8jjtjMoo+MXJMsgir5+Hs

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  6e5030969e4c6caf78be4706858f207a
- Size
  
  1.0MB
- MD5
  
  6e5030969e4c6caf78be4706858f207a
- SHA1
  
  551309895af3493dd169231a959fad375dc6ce55
- SHA256
  
  22029c11d18b6a2305e35adbace4418ae826ea6370a34b2ebe5f9f07f143a366
- SHA512
  
  05b7f555493c3cf2e970d99ce49d75a3c3b80738d55e5800aeb262476561dff178da06108b6496c8218760ce549ba2d6b2a2bcb61552c3ba0bb587939d2db6fc
- SSDEEP
  
  12288:m9cnu4Rfl55oUIJM8jo8F7ZPjQZpodiRQYTaMWMJMsgivxl5+bpNs:CcnuktIJM8jjtjMoo+MXJMsgir5+Hs
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2