de8e6d4b87735db9251283f7ed6e8eb67f2e441f4232c32688194089207bfe01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7272c8337cd8e1c24bbedc711d5c8c63
Size

7.6MB
Sample

240124-rhwxpaccf4
MD5

7272c8337cd8e1c24bbedc711d5c8c63
SHA1

5a8fe1dfa771cc0aca1dea34aea6bbbaac2bc57e
SHA256

de8e6d4b87735db9251283f7ed6e8eb67f2e441f4232c32688194089207bfe01
SHA512

816a0a3d09b5745c542dcaef598b4d6f8a06c0052858ed24b6749353aabcb23dbac34366f260807d014b0b2b93e628762b53be211fd050e4287bf830463f4960
SSDEEP

196608:Bbu8/8sQIZqTExhb3N1K2BJuEfjsLIlb6oF5owm5Ndfv:BDzQghbdA4BsE6oF3m35

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  7272c8337cd8e1c24bbedc711d5c8c63
- Size
  
  7.6MB
- MD5
  
  7272c8337cd8e1c24bbedc711d5c8c63
- SHA1
  
  5a8fe1dfa771cc0aca1dea34aea6bbbaac2bc57e
- SHA256
  
  de8e6d4b87735db9251283f7ed6e8eb67f2e441f4232c32688194089207bfe01
- SHA512
  
  816a0a3d09b5745c542dcaef598b4d6f8a06c0052858ed24b6749353aabcb23dbac34366f260807d014b0b2b93e628762b53be211fd050e4287bf830463f4960
- SSDEEP
  
  196608:Bbu8/8sQIZqTExhb3N1K2BJuEfjsLIlb6oF5owm5Ndfv:BDzQghbdA4BsE6oF3m35
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2