7e02207897c162e7ef56864b2698375a88cd22cda4deb0622b61457915768723 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

960218273ba46dc1cd96584130531c36
Size

6.5MB
Sample

240212-czk47aaf36
MD5

960218273ba46dc1cd96584130531c36
SHA1

a9aa2af1205280c3b7c31e14f6e69e0e4d48b3a7
SHA256

7e02207897c162e7ef56864b2698375a88cd22cda4deb0622b61457915768723
SHA512

389aaeb00229481bf7f78e8b3eff87b3297617449a463b6cf8b5d69ad09503e8dc60ba0f9c26f948305fa35ca2adab14db3ec69a008b7af2e316bf8c74990a5f
SSDEEP

196608:qRPzCsXDjDyf6L2WliXYrHW1L06FKD9qhlO4M:yPzCEDVL2ciIrHWRpKpqO

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  960218273ba46dc1cd96584130531c36
- Size
  
  6.5MB
- MD5
  
  960218273ba46dc1cd96584130531c36
- SHA1
  
  a9aa2af1205280c3b7c31e14f6e69e0e4d48b3a7
- SHA256
  
  7e02207897c162e7ef56864b2698375a88cd22cda4deb0622b61457915768723
- SHA512
  
  389aaeb00229481bf7f78e8b3eff87b3297617449a463b6cf8b5d69ad09503e8dc60ba0f9c26f948305fa35ca2adab14db3ec69a008b7af2e316bf8c74990a5f
- SSDEEP
  
  196608:qRPzCsXDjDyf6L2WliXYrHW1L06FKD9qhlO4M:yPzCEDVL2ciIrHWRpKpqO
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2