15593189178f21dca490720d3225da22862db809b08b0f8999ec1e982292bcdb | Triage

Sharing

General

Target

15593189178f21dca490720d3225da22862db809b08b0f8999ec1e982292bcdb
Size

2.6MB
Sample

240421-pe3vqabd8z
MD5

721f478fad3b8f3aa9e6b8cc6a405465
SHA1

5a098c7d35d7131ae987064eabf3dd799ac37f1e
SHA256

15593189178f21dca490720d3225da22862db809b08b0f8999ec1e982292bcdb
SHA512

bebdb46c2ea03a765eda7211f4f799d679ed56df55b91cd223f0c4bd53872649fc0b336c595bf86375c7376a15ca202d1acc9d5fb77ce528039856b29cfa2500
SSDEEP

49152:CCGf1iKn5B/Zzg7HZOpyMo3lQ+GjSjhTSGIo8Y70tzOnZd8cXIav:CCGbJQHZZdS+Gm2top

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  15593189178f21dca490720d3225da22862db809b08b0f8999ec1e982292bcdb
- Size
  
  2.6MB
- MD5
  
  721f478fad3b8f3aa9e6b8cc6a405465
- SHA1
  
  5a098c7d35d7131ae987064eabf3dd799ac37f1e
- SHA256
  
  15593189178f21dca490720d3225da22862db809b08b0f8999ec1e982292bcdb
- SHA512
  
  bebdb46c2ea03a765eda7211f4f799d679ed56df55b91cd223f0c4bd53872649fc0b336c595bf86375c7376a15ca202d1acc9d5fb77ce528039856b29cfa2500
- SSDEEP
  
  49152:CCGf1iKn5B/Zzg7HZOpyMo3lQ+GjSjhTSGIo8Y70tzOnZd8cXIav:CCGbJQHZZdS+Gm2top
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2