b1fb25c1f9ecf86af435318c6044ddd9d96e928f84d44bef24359aed02ce14bf | Triage

Submit
Reports

Overview

overview

7

Static

static

3

b1fb25c1f9...bf.exe

windows7-x64

1

b1fb25c1f9...bf.exe

windows10-2004-x64

7

Sharing

General

Target

b1fb25c1f9ecf86af435318c6044ddd9d96e928f84d44bef24359aed02ce14bf
Size

1.3MB
Sample

240419-dspdpsgb7s
MD5

d0b7c77d67bef40d453860d58148cb86
SHA1

991374d1912fbca5a7853a3b0da82dcb2470087e
SHA256

b1fb25c1f9ecf86af435318c6044ddd9d96e928f84d44bef24359aed02ce14bf
SHA512

f558edaebdde4ec77144a9c1c311e540e385a1a082a016031d86e29fa537bc75b63d37b84c8b56db0c654e34c9615b0f47423513e48b10e4b9d3b6714e14d739
SSDEEP

12288:h0iB+tMMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:h0iBySkQ/7Gb8NLEbeZ

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b1fb25c1f9ecf86af435318c6044ddd9d96e928f84d44bef24359aed02ce14bf.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

b1fb25c1f9ecf86af435318c6044ddd9d96e928f84d44bef24359aed02ce14bf.exe

Resource

win10v2004-20240412-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  b1fb25c1f9ecf86af435318c6044ddd9d96e928f84d44bef24359aed02ce14bf
- Size
  
  1.3MB
- MD5
  
  d0b7c77d67bef40d453860d58148cb86
- SHA1
  
  991374d1912fbca5a7853a3b0da82dcb2470087e
- SHA256
  
  b1fb25c1f9ecf86af435318c6044ddd9d96e928f84d44bef24359aed02ce14bf
- SHA512
  
  f558edaebdde4ec77144a9c1c311e540e385a1a082a016031d86e29fa537bc75b63d37b84c8b56db0c654e34c9615b0f47423513e48b10e4b9d3b6714e14d739
- SSDEEP
  
  12288:h0iB+tMMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:h0iBySkQ/7Gb8NLEbeZ
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy