40657557e6c69e35866b3dc5efdb25911e5d41aa6d0466309d722127769a175b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e73d3001cba0c172ee2a2bbddcc3059
Size

8.9MB
Sample

240109-qykc6abehj
MD5

4e73d3001cba0c172ee2a2bbddcc3059
SHA1

c92b1214fa42937846ba2ee1663bd0f31a1ab818
SHA256

40657557e6c69e35866b3dc5efdb25911e5d41aa6d0466309d722127769a175b
SHA512

329fae8f92660a379f27e11aebdd604516d87a3a9ca200efb9f9c85b13c7774e1aa9d703fa923dd975fb1c00ac275ee310be790730d0b4e939d165f9289032a4
SSDEEP

196608:m0tn/RNrlHAjoG+IY9onJ5hrZER9B2WZufOuD9Lr/QKyyHwOGCTb8ZM0h:JNZxlHOFY9c5hlERf2WmfDZrXDHwv6jM

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  4e73d3001cba0c172ee2a2bbddcc3059
- Size
  
  8.9MB
- MD5
  
  4e73d3001cba0c172ee2a2bbddcc3059
- SHA1
  
  c92b1214fa42937846ba2ee1663bd0f31a1ab818
- SHA256
  
  40657557e6c69e35866b3dc5efdb25911e5d41aa6d0466309d722127769a175b
- SHA512
  
  329fae8f92660a379f27e11aebdd604516d87a3a9ca200efb9f9c85b13c7774e1aa9d703fa923dd975fb1c00ac275ee310be790730d0b4e939d165f9289032a4
- SSDEEP
  
  196608:m0tn/RNrlHAjoG+IY9onJ5hrZER9B2WZufOuD9Lr/QKyyHwOGCTb8ZM0h:JNZxlHOFY9c5hlERf2WmfDZrXDHwv6jM
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2