bfe6020f35c465bf683a53a3be8e59ea595e6a2a8b5403f4b1787fabeb2b4b56 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55ad5511c274efcd7a9dd6c30099fdcb
Size

7.6MB
Sample

240112-gqwa1shael
MD5

55ad5511c274efcd7a9dd6c30099fdcb
SHA1

5f6dab14077c666d8038d7ec1ecd5d45172408bb
SHA256

bfe6020f35c465bf683a53a3be8e59ea595e6a2a8b5403f4b1787fabeb2b4b56
SHA512

ed011d25d0672b80096d2691bdff4adc41cb19817761fedf277d1f91df7b0aebecfe97c11da52b77bcc36e040c12aff1328db414c4c3577f4a6ab82ff2f26fb9
SSDEEP

196608:tvcG0tb8P1EYNLGwSzqJ4dUEEyFKKYA/YeVI:SG8bg1Ecwn5ElURVI

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  55ad5511c274efcd7a9dd6c30099fdcb
- Size
  
  7.6MB
- MD5
  
  55ad5511c274efcd7a9dd6c30099fdcb
- SHA1
  
  5f6dab14077c666d8038d7ec1ecd5d45172408bb
- SHA256
  
  bfe6020f35c465bf683a53a3be8e59ea595e6a2a8b5403f4b1787fabeb2b4b56
- SHA512
  
  ed011d25d0672b80096d2691bdff4adc41cb19817761fedf277d1f91df7b0aebecfe97c11da52b77bcc36e040c12aff1328db414c4c3577f4a6ab82ff2f26fb9
- SSDEEP
  
  196608:tvcG0tb8P1EYNLGwSzqJ4dUEEyFKKYA/YeVI:SG8bg1Ecwn5ElURVI
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2