fabookie | d9cba8aea678e19b497b36f3d5f9869dbd042e45759039444581a5234c59ee7f | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.DownLoader45.60881.19407.13659
Size

715KB
Sample

240129-x8tg5sagbr
MD5

d7c215d443e28dc0fe78c36909d1356a
SHA1

eceedf94f82d252f20ad8eb3dd64fcb9a6c09495
SHA256

d9cba8aea678e19b497b36f3d5f9869dbd042e45759039444581a5234c59ee7f
SHA512

ac66fb796d4025b5b3afc34f4329a6f8bda4688613582543d9b3ae96430ad925152bc2854129cb6070587b7e69a8260f2c84954f55476772296b3e5a4cc247af
SSDEEP

6144:nA01NdBRvxQWQSYYaE57iibdoaxQ7cUBmCUiJbc77ZvfuYuEdGxTC2MWf7xLUnwa:nd/5QWJGibiFShtdGxTC285JL

Score

10^/10

fabookie spyware stealer

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.DownLoader45.60881.19407.13659
- Size
  
  715KB
- MD5
  
  d7c215d443e28dc0fe78c36909d1356a
- SHA1
  
  eceedf94f82d252f20ad8eb3dd64fcb9a6c09495
- SHA256
  
  d9cba8aea678e19b497b36f3d5f9869dbd042e45759039444581a5234c59ee7f
- SHA512
  
  ac66fb796d4025b5b3afc34f4329a6f8bda4688613582543d9b3ae96430ad925152bc2854129cb6070587b7e69a8260f2c84954f55476772296b3e5a4cc247af
- SSDEEP
  
  6144:nA01NdBRvxQWQSYYaE57iibdoaxQ7cUBmCUiJbc77ZvfuYuEdGxTC2MWf7xLUnwa:nd/5QWJGibiFShtdGxTC285JL
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer

behavioral2

fabookiespywarestealer