674605c5829a581dc893c10f5bb297eb5118b407c0faae11285e4347d5c97619 | Triage

Sharing

General

Target

thurs22.exe
Size

21.2MB
Sample

240326-kw59ysef76
MD5

b77b92a3420d1ab71a2b61554fd1c959
SHA1

74365281c10c1a9c63bf2eb7a921932b82c97b70
SHA256

674605c5829a581dc893c10f5bb297eb5118b407c0faae11285e4347d5c97619
SHA512

ce4e749e1aff8b0fed4fd37f000f0de5b3deb5fac670c29fa8bf55d68f1320de8dcb91b899580748d24d49cfa25b67a8ca8ec5859555a3da1f1388b5ab60b9bf
SSDEEP

393216:LEkZQtsAMP8AxYDX1+TtIiFA/IFckr5bguH0Dl:LhQtsA/X71QtIP/IndcBDl

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  thurs22.exe
- Size
  
  21.2MB
- MD5
  
  b77b92a3420d1ab71a2b61554fd1c959
- SHA1
  
  74365281c10c1a9c63bf2eb7a921932b82c97b70
- SHA256
  
  674605c5829a581dc893c10f5bb297eb5118b407c0faae11285e4347d5c97619
- SHA512
  
  ce4e749e1aff8b0fed4fd37f000f0de5b3deb5fac670c29fa8bf55d68f1320de8dcb91b899580748d24d49cfa25b67a8ca8ec5859555a3da1f1388b5ab60b9bf
- SSDEEP
  
  393216:LEkZQtsAMP8AxYDX1+TtIiFA/IFckr5bguH0Dl:LhQtsA/X71QtIP/IndcBDl
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2