f082b3d46adb5bb3a7aca15811072c6557a9440fd370519d8cdef3a7a13de0cd | Triage

Sharing

General

Target

f082b3d46adb5bb3a7aca15811072c6557a9440fd370519d8cdef3a7a13de0cd.exe
Size

20.4MB
Sample

240418-cvyjqahg9s
MD5

a665aa5d659fe996cf654cebb1e73fa4
SHA1

59ff218a45bd07f8dcb01f817a33f96aebb71494
SHA256

f082b3d46adb5bb3a7aca15811072c6557a9440fd370519d8cdef3a7a13de0cd
SHA512

8b30189d505b0ac64855d5d2cfbae7dfa8054cf90f6cc03c5428c535fe3e5f85f0fbdc3db3a2d91289b5dd247499075089883c41ed603604a275b20ed456542f
SSDEEP

393216:edjtBby8b52AALjVabxtndRX7hbggeP7rq7NcpRHbloVMbyktxFFN:exthwAALxa3ndR7hsg8Rd2kt5N

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  f082b3d46adb5bb3a7aca15811072c6557a9440fd370519d8cdef3a7a13de0cd.exe
- Size
  
  20.4MB
- MD5
  
  a665aa5d659fe996cf654cebb1e73fa4
- SHA1
  
  59ff218a45bd07f8dcb01f817a33f96aebb71494
- SHA256
  
  f082b3d46adb5bb3a7aca15811072c6557a9440fd370519d8cdef3a7a13de0cd
- SHA512
  
  8b30189d505b0ac64855d5d2cfbae7dfa8054cf90f6cc03c5428c535fe3e5f85f0fbdc3db3a2d91289b5dd247499075089883c41ed603604a275b20ed456542f
- SSDEEP
  
  393216:edjtBby8b52AALjVabxtndRX7hbggeP7rq7NcpRHbloVMbyktxFFN:exthwAALxa3ndR7hsg8Rd2kt5N
Score

7^/10

discovery spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer