1981b91c979af59ba7625f5ece82a7c5df69e24b4fc8a724aaa2577e5b2c37bf | Triage

Sharing

General

Target

b1308b6f2febff32d32185f13fecd794
Size

84KB
Sample

240304-esfx1ahe3t
MD5

b1308b6f2febff32d32185f13fecd794
SHA1

a34498c1aa1d348b7312d0257f8ba92a34f65a22
SHA256

1981b91c979af59ba7625f5ece82a7c5df69e24b4fc8a724aaa2577e5b2c37bf
SHA512

84d4caffc9351cf847f45675505fb9897e914a110419b1c5381090e9ca7f5d01f5da8144121c61af93183933f38c89d318aa1271c0c5694b5a6a0059f1e4cf1c
SSDEEP

768:vcgzQF2U4u0YL1Ks8gGaZ5wFnPxIYYlhJhmuKKxJJARGkgrHRF+8kGw0FSNSw00K:vFzQPZVxAZP3G/5ogb+857BE2jeLV

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  b1308b6f2febff32d32185f13fecd794
- Size
  
  84KB
- MD5
  
  b1308b6f2febff32d32185f13fecd794
- SHA1
  
  a34498c1aa1d348b7312d0257f8ba92a34f65a22
- SHA256
  
  1981b91c979af59ba7625f5ece82a7c5df69e24b4fc8a724aaa2577e5b2c37bf
- SHA512
  
  84d4caffc9351cf847f45675505fb9897e914a110419b1c5381090e9ca7f5d01f5da8144121c61af93183933f38c89d318aa1271c0c5694b5a6a0059f1e4cf1c
- SSDEEP
  
  768:vcgzQF2U4u0YL1Ks8gGaZ5wFnPxIYYlhJhmuKKxJJARGkgrHRF+8kGw0FSNSw00K:vFzQPZVxAZP3G/5ogb+857BE2jeLV
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2