2039a2dfdfe7c62f02b5c75219bcd31b273ded6d9e8243f5100c8526177c66e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37b5208ec980c7212106d4e8db64341d
Size

1.7MB
Sample

231231-qknhnahhek
MD5

37b5208ec980c7212106d4e8db64341d
SHA1

cebf98cb966505b33e6e0912d294e5ea7c177019
SHA256

2039a2dfdfe7c62f02b5c75219bcd31b273ded6d9e8243f5100c8526177c66e1
SHA512

a27a3fd34eefea4e3e00feaadc23000b7f68cf948a7f55f9b7186a499504eb06bc7b424c301cbd1eea44b7bfd33d7ebdd3b1b47a42c29bec238c49e26c541e93
SSDEEP

49152:NBSGaN4UvpPXjB+avGAsygKO/2nDRoRoDx+u0W1jX3c:NC4UvpPt+aeAlDe2l7b0W1Y

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  37b5208ec980c7212106d4e8db64341d
- Size
  
  1.7MB
- MD5
  
  37b5208ec980c7212106d4e8db64341d
- SHA1
  
  cebf98cb966505b33e6e0912d294e5ea7c177019
- SHA256
  
  2039a2dfdfe7c62f02b5c75219bcd31b273ded6d9e8243f5100c8526177c66e1
- SHA512
  
  a27a3fd34eefea4e3e00feaadc23000b7f68cf948a7f55f9b7186a499504eb06bc7b424c301cbd1eea44b7bfd33d7ebdd3b1b47a42c29bec238c49e26c541e93
- SSDEEP
  
  49152:NBSGaN4UvpPXjB+avGAsygKO/2nDRoRoDx+u0W1jX3c:NC4UvpPt+aeAlDe2l7b0W1Y
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2