6b6cf3bb8927423157e6ee3dc309e2469ca2767218f8c6697554953ca07faf49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RDIHAPY.exe
Size

16.1MB
Sample

240201-rqznjshcfk
MD5

615b35eeb86d5415edbc25948f413a7d
SHA1

cf9468cbcf4e55c25992b146398afaf9c09178d7
SHA256

6b6cf3bb8927423157e6ee3dc309e2469ca2767218f8c6697554953ca07faf49
SHA512

3a14822561463cced405b2f8f440dd49062f628f25eca8d2292a67468359d68a5ee7d3d8e19fc8e2f75f219acd74cfbb3b6360c6cea3467409c7d798bd734ae4
SSDEEP

393216:lH88UL9D2NYdStXoJW2SfBbOuTZ6VY8rqN3EuK4/r7:C8UL9D2CdStXoJWBbdZKuKO7

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  RDIHAPY.exe
- Size
  
  16.1MB
- MD5
  
  615b35eeb86d5415edbc25948f413a7d
- SHA1
  
  cf9468cbcf4e55c25992b146398afaf9c09178d7
- SHA256
  
  6b6cf3bb8927423157e6ee3dc309e2469ca2767218f8c6697554953ca07faf49
- SHA512
  
  3a14822561463cced405b2f8f440dd49062f628f25eca8d2292a67468359d68a5ee7d3d8e19fc8e2f75f219acd74cfbb3b6360c6cea3467409c7d798bd734ae4
- SSDEEP
  
  393216:lH88UL9D2NYdStXoJW2SfBbOuTZ6VY8rqN3EuK4/r7:C8UL9D2CdStXoJWBbdZKuKO7
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1