dc45fede40b6bb7437156464fa3fe17caec6b2c2612c6ac357c04ac3cecdbd62 | Triage

Sharing

General

Target

dc45fede40b6bb7437156464fa3fe17caec6b2c2612c6ac357c04ac3cecdbd62
Size

1.8MB
Sample

240111-d3csnadgdr
MD5

ebd7d072318af9035f9ccb02207b278a
SHA1

d67f26f5cfd946ba573d6f5251f7846b595b2fd0
SHA256

dc45fede40b6bb7437156464fa3fe17caec6b2c2612c6ac357c04ac3cecdbd62
SHA512

6a976b02f7bb552dacc874380e50b60d222c85e260d20c8f768f26b6669e90ddaafd18a930dc8fdcbed534814fe7b1ae5470b15abd54c03fc992ea2b2707ab68
SSDEEP

49152:5x5SUW/cxUitIGLsF0nb+tJVYleAMz77+WA+/snji6attJM:5vbjVkjjCAzJnEnW6at

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  dc45fede40b6bb7437156464fa3fe17caec6b2c2612c6ac357c04ac3cecdbd62
- Size
  
  1.8MB
- MD5
  
  ebd7d072318af9035f9ccb02207b278a
- SHA1
  
  d67f26f5cfd946ba573d6f5251f7846b595b2fd0
- SHA256
  
  dc45fede40b6bb7437156464fa3fe17caec6b2c2612c6ac357c04ac3cecdbd62
- SHA512
  
  6a976b02f7bb552dacc874380e50b60d222c85e260d20c8f768f26b6669e90ddaafd18a930dc8fdcbed534814fe7b1ae5470b15abd54c03fc992ea2b2707ab68
- SSDEEP
  
  49152:5x5SUW/cxUitIGLsF0nb+tJVYleAMz77+WA+/snji6attJM:5vbjVkjjCAzJnEnW6at
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2