2fc9c826723fc0e847ab8cdad9686b48d8c291397264ac5ee9bef2805cca37a5 | Triage

Sharing

General

Target

66829eff38c8ffccd321ddfdc8b33a1e
Size

1.5MB
Sample

240119-bkwrpsdcg5
MD5

66829eff38c8ffccd321ddfdc8b33a1e
SHA1

867ac5e250fc06a9f6964170e077ea40ed8f5f72
SHA256

2fc9c826723fc0e847ab8cdad9686b48d8c291397264ac5ee9bef2805cca37a5
SHA512

10d06c7336162b91df7cf67a0665ac35dfd993c4d4f4ec7871b93bbd9e3aa27dcbced328f29719222f75f125498e3e344132bf46ba50a99ce551ff83e0e984ab
SSDEEP

24576:t2RtsxfT5Ecc6hwjZhWlkPzYiPnoIs9WoyZpGeWJkRUndufH5NTQ9ljnOAJI6g:0kfTNEfWlQzBPnoIs9WoynWaaAfXTYlK

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  66829eff38c8ffccd321ddfdc8b33a1e
- Size
  
  1.5MB
- MD5
  
  66829eff38c8ffccd321ddfdc8b33a1e
- SHA1
  
  867ac5e250fc06a9f6964170e077ea40ed8f5f72
- SHA256
  
  2fc9c826723fc0e847ab8cdad9686b48d8c291397264ac5ee9bef2805cca37a5
- SHA512
  
  10d06c7336162b91df7cf67a0665ac35dfd993c4d4f4ec7871b93bbd9e3aa27dcbced328f29719222f75f125498e3e344132bf46ba50a99ce551ff83e0e984ab
- SSDEEP
  
  24576:t2RtsxfT5Ecc6hwjZhWlkPzYiPnoIs9WoyZpGeWJkRUndufH5NTQ9ljnOAJI6g:0kfTNEfWlQzBPnoIs9WoynWaaAfXTYlK
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2