fabookie | 655ec713446b922fe8e9233e614d813906c4ce43c4db273180cd8c2c6a79d52c | Triage

Sharing

General

Target

655ec713446b922fe8e9233e614d813906c4ce43c4db273180cd8c2c6a79d52c
Size

715KB
Sample

240201-fhmhgadfal
MD5

f838df75b8246152af74728a058fa8c8
SHA1

3eddf463a67b5a200b0737f4574224250e85068e
SHA256

655ec713446b922fe8e9233e614d813906c4ce43c4db273180cd8c2c6a79d52c
SHA512

5df11d0fea0b929fbdcfb223c10b1c266b041950f87fc7ad249dc369a55fc8c747330c5937d2effed2365c5cd8ccb0c673c98e2b9ac3f4b810cedda0fce5c8fd
SSDEEP

6144:nA01NdBRvxQWQSYYaE57iibdoaxQ7cUBmCUiJbc77ZvfuYuEdGxTC2+Wf7xLUnwa:nd/5QWJGibiFShtdGxTC2K5JL

Score

10^/10

fabookie spyware stealer

Malware Config

Targets

- Target
  
  655ec713446b922fe8e9233e614d813906c4ce43c4db273180cd8c2c6a79d52c
- Size
  
  715KB
- MD5
  
  f838df75b8246152af74728a058fa8c8
- SHA1
  
  3eddf463a67b5a200b0737f4574224250e85068e
- SHA256
  
  655ec713446b922fe8e9233e614d813906c4ce43c4db273180cd8c2c6a79d52c
- SHA512
  
  5df11d0fea0b929fbdcfb223c10b1c266b041950f87fc7ad249dc369a55fc8c747330c5937d2effed2365c5cd8ccb0c673c98e2b9ac3f4b810cedda0fce5c8fd
- SSDEEP
  
  6144:nA01NdBRvxQWQSYYaE57iibdoaxQ7cUBmCUiJbc77ZvfuYuEdGxTC2+Wf7xLUnwa:nd/5QWJGibiFShtdGxTC2K5JL
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer

behavioral2

fabookiespywarestealer