de2909bdc979c9780f758980bd5eb061876ccd1f0d1ace42722afe935a464721 | Triage

Sharing

General

Target

2024-01-11_9d018f073d72d79f8a1759dc58c797f1_krakencryptor
Size

1.7MB
Sample

240112-gr6s5sadf4
MD5

9d018f073d72d79f8a1759dc58c797f1
SHA1

fd16a54fdc4895ad66cc9a0aab429585d83ea580
SHA256

de2909bdc979c9780f758980bd5eb061876ccd1f0d1ace42722afe935a464721
SHA512

f738d16f097e5d3ce9975a3b1d35d5f85b75b1326e1a8bce5a93dddce44c350e45e4d4f1aff329588a179a602b080f21b4b374862b3cf7399d1e45ee0c45a385
SSDEEP

12288:3EPCxAHceAUA/vgJFNFaFeFOFwcGF6cmFWc0FWc8cIcKcUFJFpcNcHc7cbchFFcv:7A8TXngdSEDljL34DQRh9B4d3

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  2024-01-11_9d018f073d72d79f8a1759dc58c797f1_krakencryptor
- Size
  
  1.7MB
- MD5
  
  9d018f073d72d79f8a1759dc58c797f1
- SHA1
  
  fd16a54fdc4895ad66cc9a0aab429585d83ea580
- SHA256
  
  de2909bdc979c9780f758980bd5eb061876ccd1f0d1ace42722afe935a464721
- SHA512
  
  f738d16f097e5d3ce9975a3b1d35d5f85b75b1326e1a8bce5a93dddce44c350e45e4d4f1aff329588a179a602b080f21b4b374862b3cf7399d1e45ee0c45a385
- SSDEEP
  
  12288:3EPCxAHceAUA/vgJFNFaFeFOFwcGF6cmFWc0FWc8cIcKcUFJFpcNcHc7cbchFFcv:7A8TXngdSEDljL34DQRh9B4d3
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2