71dbbbeb418305a7a16464a0558113d8d1227ce3f16d22dfc9d902a18b9eb8a6 | Triage

Resubmissions

19-04-2024 22:07

240419-11s37ahf3x 7

19-04-2024 17:25

240419-vzr7lsbc91 7

Sharing

General

Target

prank.exe
Size

14.5MB
Sample

240419-vzr7lsbc91
MD5

8611679797f3e3c3778ae0831b38a4c0
SHA1

2943bda7716f5f19f7c952413f263c31ee56604a
SHA256

71dbbbeb418305a7a16464a0558113d8d1227ce3f16d22dfc9d902a18b9eb8a6
SHA512

6b317b8e66828e6420975e80c51d78e5fe736d200eb82ba0e3a61c963cf6f412a17dc298872dbe6c67904b0bbd0fdfc4a41a8fac3f8fbd2766aaabfe6cd0902c
SSDEEP

393216:+iIE7YoDUHk3mescGfdsYc2Pz21t/XYNk/yK3mkMII2:/7rDCaG5FsjE+/YLKWu

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  prank.exe
- Size
  
  14.5MB
- MD5
  
  8611679797f3e3c3778ae0831b38a4c0
- SHA1
  
  2943bda7716f5f19f7c952413f263c31ee56604a
- SHA256
  
  71dbbbeb418305a7a16464a0558113d8d1227ce3f16d22dfc9d902a18b9eb8a6
- SHA512
  
  6b317b8e66828e6420975e80c51d78e5fe736d200eb82ba0e3a61c963cf6f412a17dc298872dbe6c67904b0bbd0fdfc4a41a8fac3f8fbd2766aaabfe6cd0902c
- SSDEEP
  
  393216:+iIE7YoDUHk3mescGfdsYc2Pz21t/XYNk/yK3mkMII2:/7rDCaG5FsjE+/YLKWu
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1