fabookie | b79e5164c3f1e8758baba0e0d05f86058be8adf165b5f3d10428a42d8bec1f7d | Triage

Sharing

General

Target

95bcfc484ea3b87d4e0058bb15bfc206.bin
Size

288KB
Sample

240206-c9hf2sfdgm
MD5

0dbd1a63f9b987d08a85e0431f8b476b
SHA1

5a5e68f64a78475d2468f1a602ed1277cd7ceb52
SHA256

b79e5164c3f1e8758baba0e0d05f86058be8adf165b5f3d10428a42d8bec1f7d
SHA512

984dce60a23389d182d73fcb0557ddd76ef53d59d6664362394f8d17d8675d56d68c562d37070d90677f26e6078eeccc80939fd272e4a6d1ce5388c5cf6d1771
SSDEEP

6144:vZJ1Y6qb9aCerGbXPJ/M7F31s0dSPhmMY0WYOLajdFAR91yOMQksqP2:vf1fqbaaVKFFsTV/WxahFcdksa2

Score

10^/10

fabookie spyware stealer

Malware Config

Targets

- Target
  
  2bf7fdb0b81e587a2121389cce1f0a4404ef51c59e71eeafef50ccfeb7914aa3.exe
- Size
  
  715KB
- MD5
  
  95bcfc484ea3b87d4e0058bb15bfc206
- SHA1
  
  07eee3b46dd79949e1d456d801f77d411eb480ae
- SHA256
  
  2bf7fdb0b81e587a2121389cce1f0a4404ef51c59e71eeafef50ccfeb7914aa3
- SHA512
  
  b57a55942aa9a6dd5a3ae308ff39d04b9c5e0a6fa3402b708fa5732457acb8a29b05739707e5154026d9aab8559d4b8c297863851b9b8a545d7ec03e06e482e0
- SSDEEP
  
  6144:nA01Nd5uvxQWQSYYaE5CinBdRxQ7cUBmCUiJbc77ZvfuYuEdGxTC2wWf7xLUnw+V:ndo5QWJnnBIShtdGxTC2A5JL
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer

behavioral2

fabookiespywarestealer