233c8de9d082447c735555b4822bb49534df9f1b37cc170aaf168e50f4ed9edc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abfbcecff800549cdc9e574cb505ecd1
Size

1.7MB
Sample

240228-qnh3cace9t
MD5

abfbcecff800549cdc9e574cb505ecd1
SHA1

f438bc4ab16ac1d963157dc544037c6bb29d91d3
SHA256

233c8de9d082447c735555b4822bb49534df9f1b37cc170aaf168e50f4ed9edc
SHA512

3d6554ef25ddcd21031f8762d9b9d233ae65c25c77f69f89317f84bb861ef4ed3b43f5c3f5b8308d287d3eb305a65c8c95d44e0a3942e7f0bdbd06f29c273a16
SSDEEP

49152:VJJrmkyMRt8JIeyH68c2fed30So4WB4PDLI09I:Rwstwh26t2G3fo4Pb+

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  abfbcecff800549cdc9e574cb505ecd1
- Size
  
  1.7MB
- MD5
  
  abfbcecff800549cdc9e574cb505ecd1
- SHA1
  
  f438bc4ab16ac1d963157dc544037c6bb29d91d3
- SHA256
  
  233c8de9d082447c735555b4822bb49534df9f1b37cc170aaf168e50f4ed9edc
- SHA512
  
  3d6554ef25ddcd21031f8762d9b9d233ae65c25c77f69f89317f84bb861ef4ed3b43f5c3f5b8308d287d3eb305a65c8c95d44e0a3942e7f0bdbd06f29c273a16
- SSDEEP
  
  49152:VJJrmkyMRt8JIeyH68c2fed30So4WB4PDLI09I:Rwstwh26t2G3fo4Pb+
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2