79decf032c1467047c31d4d876180a6e54112751fe25fc503cbd11eed6fa248e | Triage

Sharing

General

Target

657c76db82bd813d34b849253ced80ad
Size

1.6MB
Sample

240118-tvycdsdcaq
MD5

657c76db82bd813d34b849253ced80ad
SHA1

51bb0ea8bd01e7ba06b4284ab63d9cea4b4fee31
SHA256

79decf032c1467047c31d4d876180a6e54112751fe25fc503cbd11eed6fa248e
SHA512

d4e5af80f40db5e0318066c6eb248ca47af6191e98b5aee4d69be53fe0db7c6ff049f78f22dc7742eefe31ad3199c169e2b1847d3199ccd49232071ebe29f065
SSDEEP

49152:5Hf9VQRRqvelYDVPddMgGuL83/YfTqIrY:5lVSgdDJM3wW

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  657c76db82bd813d34b849253ced80ad
- Size
  
  1.6MB
- MD5
  
  657c76db82bd813d34b849253ced80ad
- SHA1
  
  51bb0ea8bd01e7ba06b4284ab63d9cea4b4fee31
- SHA256
  
  79decf032c1467047c31d4d876180a6e54112751fe25fc503cbd11eed6fa248e
- SHA512
  
  d4e5af80f40db5e0318066c6eb248ca47af6191e98b5aee4d69be53fe0db7c6ff049f78f22dc7742eefe31ad3199c169e2b1847d3199ccd49232071ebe29f065
- SSDEEP
  
  49152:5Hf9VQRRqvelYDVPddMgGuL83/YfTqIrY:5lVSgdDJM3wW
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2