66260c0a620420f32aa17235de606e1a8b90b6d4f7fd5c683ea788512c1b0568 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20b2b73beb57bc85445a13bbb97c4f94
Size

1.1MB
Sample

231230-3xf1kaaff2
MD5

20b2b73beb57bc85445a13bbb97c4f94
SHA1

b1e9a11069a5dd235aa2611521e30e24abb4e30e
SHA256

66260c0a620420f32aa17235de606e1a8b90b6d4f7fd5c683ea788512c1b0568
SHA512

ead43230069b2cf9d33b9f17a146f69462ff7c9d26c86e2495cda77bf3485f2095da421a9460cb9f64f5588a32fa5a2256ad960e97a7b2f38fbc1e98fa90d0fc
SSDEEP

12288:P8V4985mqDmfCR2ip0xAsrNSB7TKx5aP14TMCG1buLST9NKwiUmgJYGv:kOqDF2RxA2Sox5unhT98EeGv

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  20b2b73beb57bc85445a13bbb97c4f94
- Size
  
  1.1MB
- MD5
  
  20b2b73beb57bc85445a13bbb97c4f94
- SHA1
  
  b1e9a11069a5dd235aa2611521e30e24abb4e30e
- SHA256
  
  66260c0a620420f32aa17235de606e1a8b90b6d4f7fd5c683ea788512c1b0568
- SHA512
  
  ead43230069b2cf9d33b9f17a146f69462ff7c9d26c86e2495cda77bf3485f2095da421a9460cb9f64f5588a32fa5a2256ad960e97a7b2f38fbc1e98fa90d0fc
- SSDEEP
  
  12288:P8V4985mqDmfCR2ip0xAsrNSB7TKx5aP14TMCG1buLST9NKwiUmgJYGv:kOqDF2RxA2Sox5unhT98EeGv
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2