a9b19b45ea053470d15f13b873823cb0b4e667493c1eaa308618cb2d1162af7e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

488193f55126631958f4cf1b42ef48b6
Size

29.0MB
Sample

240107-kfa4waheck
MD5

488193f55126631958f4cf1b42ef48b6
SHA1

c36ac3200bd147a5875061dc0bfe01c5a34f376c
SHA256

a9b19b45ea053470d15f13b873823cb0b4e667493c1eaa308618cb2d1162af7e
SHA512

6802800cebeeac99655e2776a43db8e0eadb99d418f2f8fdbdf9d9c535d89f31f7f52c28db2fd1cb8faf60b4574e074aac4d46ef73266f8b24b8a44e8c483204
SSDEEP

786432:1MNNBHCEDbi9M0PHLOTeaPRQpkmoZkxRiOu9+:1EBHCmVPRRmJDa9+

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  488193f55126631958f4cf1b42ef48b6
- Size
  
  29.0MB
- MD5
  
  488193f55126631958f4cf1b42ef48b6
- SHA1
  
  c36ac3200bd147a5875061dc0bfe01c5a34f376c
- SHA256
  
  a9b19b45ea053470d15f13b873823cb0b4e667493c1eaa308618cb2d1162af7e
- SHA512
  
  6802800cebeeac99655e2776a43db8e0eadb99d418f2f8fdbdf9d9c535d89f31f7f52c28db2fd1cb8faf60b4574e074aac4d46ef73266f8b24b8a44e8c483204
- SSDEEP
  
  786432:1MNNBHCEDbi9M0PHLOTeaPRQpkmoZkxRiOu9+:1EBHCmVPRRmJDa9+
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2