29e77b7f9e0bf2560fc15d5f4bcd23bbdc3999637b1f720cca4d4f02e88b117e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cb5826c9f4f25ab076b1458bd300f1d
Size

1.6MB
Sample

240203-s49lcacgf4
MD5

8cb5826c9f4f25ab076b1458bd300f1d
SHA1

88e463d19c8cabd865e596986968757e773938ee
SHA256

29e77b7f9e0bf2560fc15d5f4bcd23bbdc3999637b1f720cca4d4f02e88b117e
SHA512

8bbdfdd3a1c388f1870bf9b90bcd201a91e3bf886ea988de0d2c447e86a690a2c5a4406665b247917e15c9832d482fd1f170e505034da4ea43925fa86cee25e7
SSDEEP

49152:JQagM/VkLHwbwexxcTcoOfhc8AxOVnbw+ij/TtCfjnbIc:GEVkLAxPo0c8hB9ijMjb9

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  8cb5826c9f4f25ab076b1458bd300f1d
- Size
  
  1.6MB
- MD5
  
  8cb5826c9f4f25ab076b1458bd300f1d
- SHA1
  
  88e463d19c8cabd865e596986968757e773938ee
- SHA256
  
  29e77b7f9e0bf2560fc15d5f4bcd23bbdc3999637b1f720cca4d4f02e88b117e
- SHA512
  
  8bbdfdd3a1c388f1870bf9b90bcd201a91e3bf886ea988de0d2c447e86a690a2c5a4406665b247917e15c9832d482fd1f170e505034da4ea43925fa86cee25e7
- SSDEEP
  
  49152:JQagM/VkLHwbwexxcTcoOfhc8AxOVnbw+ij/TtCfjnbIc:GEVkLAxPo0c8hB9ijMjb9
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2