6f0044d7771bccca3866030e0792696d99b0f4db14c408f2d5aa93e42cf0b755 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

108db25d9947a6b8ba0352a6de83121d
Size

1.6MB
Sample

231230-gqjl8abee3
MD5

108db25d9947a6b8ba0352a6de83121d
SHA1

35ebeb78c8904e8baead52349ea49c1147bace46
SHA256

6f0044d7771bccca3866030e0792696d99b0f4db14c408f2d5aa93e42cf0b755
SHA512

326309f123ed396e1a3e847719af2d264e9a75385facba2527fc7bcd582bb2a2b81ee62bbe8ae16058efb0cb7c33ff103618f65f93676e819ca3871505117e94
SSDEEP

49152:6/fwhofLeH4si17tnyKl6ZAZ5a0mLTqOrl:6whweHxiUMax5

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  108db25d9947a6b8ba0352a6de83121d
- Size
  
  1.6MB
- MD5
  
  108db25d9947a6b8ba0352a6de83121d
- SHA1
  
  35ebeb78c8904e8baead52349ea49c1147bace46
- SHA256
  
  6f0044d7771bccca3866030e0792696d99b0f4db14c408f2d5aa93e42cf0b755
- SHA512
  
  326309f123ed396e1a3e847719af2d264e9a75385facba2527fc7bcd582bb2a2b81ee62bbe8ae16058efb0cb7c33ff103618f65f93676e819ca3871505117e94
- SSDEEP
  
  49152:6/fwhofLeH4si17tnyKl6ZAZ5a0mLTqOrl:6whweHxiUMax5
Score

7^/10

evasion trojan spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2