4f0c0dfddc583a0a80d4a8c399b3577321b583fd24c96debe92a0e97d8414d67 | Triage

Sharing

General

Target

49fa2ce3ce39db4258cf5edb5afa0965
Size

1.6MB
Sample

240107-2rdgtafgal
MD5

49fa2ce3ce39db4258cf5edb5afa0965
SHA1

8af732c6d817958308e842723a4048146d039345
SHA256

4f0c0dfddc583a0a80d4a8c399b3577321b583fd24c96debe92a0e97d8414d67
SHA512

fc198368d4c46713e01712f0fbc7c48aeed77a30a958561773a5b4cdfa2abf2aa01727f0c57e89c0cfb5119d5886332f981154fc86b42f3fc059511c7588f5eb
SSDEEP

49152:S/fwUdLfGiPTStHxNtKgEAhK1kfqtOZ2TwhrN:SwUdCi7KHs19tc3

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  49fa2ce3ce39db4258cf5edb5afa0965
- Size
  
  1.6MB
- MD5
  
  49fa2ce3ce39db4258cf5edb5afa0965
- SHA1
  
  8af732c6d817958308e842723a4048146d039345
- SHA256
  
  4f0c0dfddc583a0a80d4a8c399b3577321b583fd24c96debe92a0e97d8414d67
- SHA512
  
  fc198368d4c46713e01712f0fbc7c48aeed77a30a958561773a5b4cdfa2abf2aa01727f0c57e89c0cfb5119d5886332f981154fc86b42f3fc059511c7588f5eb
- SSDEEP
  
  49152:S/fwUdLfGiPTStHxNtKgEAhK1kfqtOZ2TwhrN:SwUdCi7KHs19tc3
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2