fabookie | ff845b62bd230f7d6520aa40fcaf179f3e8b7d083c15da95d6fcdc77d6b77caa | Triage

Sharing

General

Target

8dc1f88ae1fcedeb3983c5f5c3d486b0.bin
Size

288KB
Sample

240207-ce9xtadedn
MD5

bd95d14d384bc1af4e2eca7d95e34528
SHA1

fc884384133e1571d22ff797210a25a4037dcbec
SHA256

ff845b62bd230f7d6520aa40fcaf179f3e8b7d083c15da95d6fcdc77d6b77caa
SHA512

cc630eb8074ba81ec4e51d23f7868e31255c526f59a7583da82e64d42931084599f82550210684b9497b9ece939312c30523213fc645f7cc8f8543db7b7ad423
SSDEEP

6144:NxKNk9gYX6WBZ1fjszJ092brV8Dw9O6JRfefDxLNkic5Ui+9cjk4RBsI0XXV:NxsOTZfoo2bUw9XRfefDEpCfxRI0Xl

Score

10^/10

fabookie spyware stealer

Malware Config

Targets

- Target
  
  4a15d91920a4da9a64935248c126fb60e8302198df8e5759da8129ac1841beca.exe
- Size
  
  715KB
- MD5
  
  8dc1f88ae1fcedeb3983c5f5c3d486b0
- SHA1
  
  d40e67ba5558d90cb11eeca04d213322159336fc
- SHA256
  
  4a15d91920a4da9a64935248c126fb60e8302198df8e5759da8129ac1841beca
- SHA512
  
  0b2263fe049e280af1178fd396a06a04e6b99f7c971839207ae225161257ed9d9b7eaa8d0ceb1f14d3aa2094b53ce91dd045ebc169102e707ea7285f91432ac1
- SSDEEP
  
  6144:nA01Nd5uvxQWQSYYaE5CinBdRxQ7cUBmCUiJbc77ZvfuYuEdGxTC2EWf7xLUnw+V:ndo5QWJnnBIShtdGxTC2k5JL
Score

10^/10

fabookie spyware stealer
- Detect Fabookie payload
- Fabookie
  Fabookie is facebook account info stealer.
  spyware stealer fabookie
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fabookiespywarestealer

behavioral2

fabookiespywarestealer