38add4e0067a3d4272bde6ad242cf94fea968a7a40efb292620ee79500825762 | Triage

Sharing

General

Target

bypass.exe
Size

5.3MB
Sample

240309-t7ljcsdb2t
MD5

9a1241f2d323596fbeef668ca803ef45
SHA1

4eb0a84553c2d79f833ac101f2ffd83c095b3cd0
SHA256

38add4e0067a3d4272bde6ad242cf94fea968a7a40efb292620ee79500825762
SHA512

52d76452b9270e2f038750a22459b284ab1e1e6462be799c66038af5e8ac8876c3abf6d7bde30c0d906f88dc4039a8808c30ac0ede5fcfcbf4eea93bb1805431
SSDEEP

98304:UlmqNU4zHQktlw2Kce0t+JhVWn2xxjsS9cIBXIzsQbpjtN:ULp3tlKXjXWnAf7BXIzp

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  bypass.exe
- Size
  
  5.3MB
- MD5
  
  9a1241f2d323596fbeef668ca803ef45
- SHA1
  
  4eb0a84553c2d79f833ac101f2ffd83c095b3cd0
- SHA256
  
  38add4e0067a3d4272bde6ad242cf94fea968a7a40efb292620ee79500825762
- SHA512
  
  52d76452b9270e2f038750a22459b284ab1e1e6462be799c66038af5e8ac8876c3abf6d7bde30c0d906f88dc4039a8808c30ac0ede5fcfcbf4eea93bb1805431
- SSDEEP
  
  98304:UlmqNU4zHQktlw2Kce0t+JhVWn2xxjsS9cIBXIzsQbpjtN:ULp3tlKXjXWnAf7BXIzp
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2