9ec9aaccaee62142b68152a485d380775ddff1e48b3ef10a9e1aec0c8bdbcdb0 | Triage

Sharing

General

Target

d3f639268958eb5e92377eac138f4d45
Size

256KB
Sample

240318-tt8rqsde5t
MD5

d3f639268958eb5e92377eac138f4d45
SHA1

3c827ec849943e36c36d2b4bd9d6396e59f330ac
SHA256

9ec9aaccaee62142b68152a485d380775ddff1e48b3ef10a9e1aec0c8bdbcdb0
SHA512

b5be966cd82c46e9668c5d658ca18ce87a7b2b9f93347ae8948c0bae4094fefe01361112424f1e9059fc5dc74710c4389ce0cbaeaa05625ffa216b7b2518bdad
SSDEEP

1536:254vKQlgL54vKQlgbuJikmbcQtg8QN54v:IPbVPbbuUH+8M

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  d3f639268958eb5e92377eac138f4d45
- Size
  
  256KB
- MD5
  
  d3f639268958eb5e92377eac138f4d45
- SHA1
  
  3c827ec849943e36c36d2b4bd9d6396e59f330ac
- SHA256
  
  9ec9aaccaee62142b68152a485d380775ddff1e48b3ef10a9e1aec0c8bdbcdb0
- SHA512
  
  b5be966cd82c46e9668c5d658ca18ce87a7b2b9f93347ae8948c0bae4094fefe01361112424f1e9059fc5dc74710c4389ce0cbaeaa05625ffa216b7b2518bdad
- SSDEEP
  
  1536:254vKQlgL54vKQlgbuJikmbcQtg8QN54v:IPbVPbbuUH+8M
Score

8^/10

spyware stealer
- Drops file in Drivers directory
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2