58c9d3a5be31309d1842f9a9f0531d632df817fcd0dba5690645631a6b81b6c0 | Triage

Sharing

General

Target

b6a819ef7e168d266b46fea369795c6d
Size

1.5MB
Sample

240306-gg399scc6v
MD5

b6a819ef7e168d266b46fea369795c6d
SHA1

fa60566c82eb267a28b456f9b71377f9b1801623
SHA256

58c9d3a5be31309d1842f9a9f0531d632df817fcd0dba5690645631a6b81b6c0
SHA512

57f48832ebc52c40e2f04c277579768d3466ff72301679c35215c59821d932bc483f64140d07cb254fa6cada9aa2e2d34d0c11050b7840e913e4befde825567c
SSDEEP

24576:sGoseufagFnX8dfncq6cPwKPqnLolyMEIChp2GClQjX0bX7xNTlRFb5jnOAJIxd:JZfaeqn56wwQqLolrEIC3J4r7/TbTjnm

Score

7^/10

evasion spyware stealer trojan

Malware Config

Targets

- Target
  
  b6a819ef7e168d266b46fea369795c6d
- Size
  
  1.5MB
- MD5
  
  b6a819ef7e168d266b46fea369795c6d
- SHA1
  
  fa60566c82eb267a28b456f9b71377f9b1801623
- SHA256
  
  58c9d3a5be31309d1842f9a9f0531d632df817fcd0dba5690645631a6b81b6c0
- SHA512
  
  57f48832ebc52c40e2f04c277579768d3466ff72301679c35215c59821d932bc483f64140d07cb254fa6cada9aa2e2d34d0c11050b7840e913e4befde825567c
- SSDEEP
  
  24576:sGoseufagFnX8dfncq6cPwKPqnLolyMEIChp2GClQjX0bX7xNTlRFb5jnOAJIxd:JZfaeqn56wwQqLolrEIC3J4r7/TbTjnm
Score

7^/10

evasion spyware stealer trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionspywarestealertrojan

behavioral2