26b468da8e91ddbb807a9f8c95e2bd3f01510cb9438d7ae6134d108900e06b88 | Triage

Sharing

General

Target

26b468da8e91ddbb807a9f8c95e2bd3f01510cb9438d7ae6134d108900e06b88.exe
Size

1.2MB
Sample

240212-c83etsbf64
MD5

ba8c5dc5ec763007a4af9cb06bef78ef
SHA1

a50aaf51e7d5998a4cb7a4218f463b06fd005b5e
SHA256

26b468da8e91ddbb807a9f8c95e2bd3f01510cb9438d7ae6134d108900e06b88
SHA512

e065ea526ee8843db6f74f29b8b545ff0b6333084242aaa9998287ef17a5bf86fb7c3709fc997e31272124468c6f68218759044c5a36cb22f3ec743605eb885c
SSDEEP

24576:EvkQL6YY4wMPSYZofkf0Gh6Pi41+a9uyP5dggX9+yC7:EsMPSYcS5wPi095Pbgm9

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  26b468da8e91ddbb807a9f8c95e2bd3f01510cb9438d7ae6134d108900e06b88.exe
- Size
  
  1.2MB
- MD5
  
  ba8c5dc5ec763007a4af9cb06bef78ef
- SHA1
  
  a50aaf51e7d5998a4cb7a4218f463b06fd005b5e
- SHA256
  
  26b468da8e91ddbb807a9f8c95e2bd3f01510cb9438d7ae6134d108900e06b88
- SHA512
  
  e065ea526ee8843db6f74f29b8b545ff0b6333084242aaa9998287ef17a5bf86fb7c3709fc997e31272124468c6f68218759044c5a36cb22f3ec743605eb885c
- SSDEEP
  
  24576:EvkQL6YY4wMPSYZofkf0Gh6Pi41+a9uyP5dggX9+yC7:EsMPSYcS5wPi095Pbgm9
Score

8^/10

spyware stealer
- Blocklisted process makes network request
- Reads local data of messenger clients
  Infostealers often target stored data of messaging applications, which can include saved credentials and account information.
  spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2