883ad0cea5c98557f3d246d596dbf353a48cc6a9d72318fd3206748152fd5682 | Triage

Sharing

General

Target

883ad0cea5c98557f3d246d596dbf353a48cc6a9d72318fd3206748152fd5682
Size

1.9MB
Sample

240419-3w3g6sag54
MD5

0c4be115480828dc7855259b32e7038c
SHA1

91e2d79805922fbb077a090504023c2722ace70d
SHA256

883ad0cea5c98557f3d246d596dbf353a48cc6a9d72318fd3206748152fd5682
SHA512

2f2578971ea4ae6a4a44ab2b452ee7c423d31b57ce684313b85d746dc934ac11e1187d4d7fadd1a1f58f749bce69cf8a9e74ba4ece8b75eac0189a474ad2b79d
SSDEEP

49152:I6f+3dH46hwbAVt/7l2qpGT/lVNXHu9gBrDhuMrIRzO0:I6f+tHzwbAbjl2H12D

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  883ad0cea5c98557f3d246d596dbf353a48cc6a9d72318fd3206748152fd5682
- Size
  
  1.9MB
- MD5
  
  0c4be115480828dc7855259b32e7038c
- SHA1
  
  91e2d79805922fbb077a090504023c2722ace70d
- SHA256
  
  883ad0cea5c98557f3d246d596dbf353a48cc6a9d72318fd3206748152fd5682
- SHA512
  
  2f2578971ea4ae6a4a44ab2b452ee7c423d31b57ce684313b85d746dc934ac11e1187d4d7fadd1a1f58f749bce69cf8a9e74ba4ece8b75eac0189a474ad2b79d
- SSDEEP
  
  49152:I6f+3dH46hwbAVt/7l2qpGT/lVNXHu9gBrDhuMrIRzO0:I6f+tHzwbAbjl2H12D
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2