635c4c20c790078d4e8607c724ae6da82e3d02f5418d11ae537cf55c9c253c40 | Triage

Sharing

General

Target

401cb6985e473798db8225f618224bcd
Size

1.6MB
Sample

240104-g24rjacgb7
MD5

401cb6985e473798db8225f618224bcd
SHA1

a4c9cd39b7a31a5767bb6fae43012ce60ac5e8ea
SHA256

635c4c20c790078d4e8607c724ae6da82e3d02f5418d11ae537cf55c9c253c40
SHA512

930b0eb1c62858e7cbcd881e33c29e6b3d3f5b571cfd1d70b80e8faa9fb0102171a8b01243b394dbaa80c145d9ea62ff8ab8e59c7fbb3149708aae19b441f7a9
SSDEEP

49152:Q/fwUdeRW1s5ycjkcSZEDghtAkf4tJh8TNkra:QwUdf1GXj6BGt3i

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  401cb6985e473798db8225f618224bcd
- Size
  
  1.6MB
- MD5
  
  401cb6985e473798db8225f618224bcd
- SHA1
  
  a4c9cd39b7a31a5767bb6fae43012ce60ac5e8ea
- SHA256
  
  635c4c20c790078d4e8607c724ae6da82e3d02f5418d11ae537cf55c9c253c40
- SHA512
  
  930b0eb1c62858e7cbcd881e33c29e6b3d3f5b571cfd1d70b80e8faa9fb0102171a8b01243b394dbaa80c145d9ea62ff8ab8e59c7fbb3149708aae19b441f7a9
- SSDEEP
  
  49152:Q/fwUdeRW1s5ycjkcSZEDghtAkf4tJh8TNkra:QwUdf1GXj6BGt3i
Score

7^/10

evasion trojan spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2