aa70ee6b0047d5614e016d1343cbef16b2f388fb5a200b460ad6f23bb3cd6fdb | Triage

Sharing

General

Target

main.exe
Size

12.6MB
Sample

240405-cd89wshh83
MD5

122a4125fcb42b0c00b0916140917cb1
SHA1

c482de1153ff59ed7335ea2df0a668965aa56d33
SHA256

aa70ee6b0047d5614e016d1343cbef16b2f388fb5a200b460ad6f23bb3cd6fdb
SHA512

3886a0ab913d6dab4159798c3a8ca904ac8be817302c95843136b71830d62b2b44d785188b899b8b2bbe4cc60207ef3faba6f7b8107fc683ab25d8c2b065f1c8
SSDEEP

393216:6EkMDhjmcW+eGQRIMTozGxu8C0ibfppeF28d5aWCwV:6UDhjmcW+e5R5oztZ04WWVwV

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  main.exe
- Size
  
  12.6MB
- MD5
  
  122a4125fcb42b0c00b0916140917cb1
- SHA1
  
  c482de1153ff59ed7335ea2df0a668965aa56d33
- SHA256
  
  aa70ee6b0047d5614e016d1343cbef16b2f388fb5a200b460ad6f23bb3cd6fdb
- SHA512
  
  3886a0ab913d6dab4159798c3a8ca904ac8be817302c95843136b71830d62b2b44d785188b899b8b2bbe4cc60207ef3faba6f7b8107fc683ab25d8c2b065f1c8
- SSDEEP
  
  393216:6EkMDhjmcW+eGQRIMTozGxu8C0ibfppeF28d5aWCwV:6UDhjmcW+e5R5oztZ04WWVwV
Score

7^/10

spyware stealer
- Drops startup file
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2