bfa99f0fbc0f753f72c6aef9681b164eff199a9e97250de83d224ff365948c94 | Triage

Sharing

General

Target

118d86b920ddede209c8a392c421b5c8
Size

431KB
Sample

231230-hp67kafeaq
MD5

118d86b920ddede209c8a392c421b5c8
SHA1

fae1ae00917482590124a51110d82cf727616e30
SHA256

bfa99f0fbc0f753f72c6aef9681b164eff199a9e97250de83d224ff365948c94
SHA512

dd5830b2e1d9eb7eea6b6e85d1bafe7cc2a1ea5343622e5281eab59e5f2f83b1dc480c1469b163089bcdc6a6867ac75be7705db45b2d792378012d392dcfe7a0
SSDEEP

6144:Ls41n3WVQKGLr30b/Lhhjv6C5zMt6UuR+eNjV/01dXIOrUTF3mm0/2uVP8CnUys0:N1nNKg30b/dvhi+y1G5d0hnUy0ZS9

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  118d86b920ddede209c8a392c421b5c8
- Size
  
  431KB
- MD5
  
  118d86b920ddede209c8a392c421b5c8
- SHA1
  
  fae1ae00917482590124a51110d82cf727616e30
- SHA256
  
  bfa99f0fbc0f753f72c6aef9681b164eff199a9e97250de83d224ff365948c94
- SHA512
  
  dd5830b2e1d9eb7eea6b6e85d1bafe7cc2a1ea5343622e5281eab59e5f2f83b1dc480c1469b163089bcdc6a6867ac75be7705db45b2d792378012d392dcfe7a0
- SSDEEP
  
  6144:Ls41n3WVQKGLr30b/Lhhjv6C5zMt6UuR+eNjV/01dXIOrUTF3mm0/2uVP8CnUys0:N1nNKg30b/dvhi+y1G5d0hnUy0ZS9
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2