38b48ba645ac1d9f1047afd6e79ffb1dc80a64224562eca54cc241667d62690c | Triage

Sharing

General

Target

38b48ba645ac1d9f1047afd6e79ffb1dc80a64224562eca54cc241667d62690c
Size

2.6MB
Sample

240422-zqnv2sgc51
MD5

ddd4ee9fa1d4bdd4f67353817d9e9906
SHA1

03810981f68043e75d63afa5223514437654fc5e
SHA256

38b48ba645ac1d9f1047afd6e79ffb1dc80a64224562eca54cc241667d62690c
SHA512

d95c8d714ee2aac7faaa36eb1c63b4f572f5d43ed91ab873f745d4b790663fa2eed36bdbc3461b6108291f1f868fdaebafd03d4e56164a83b836fc46bce53cf3
SSDEEP

49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBtB/bS:sxX7QnxrloE5dpUpKb

Score

7^/10

persistence spyware stealer

Malware Config

Targets

- Target
  
  38b48ba645ac1d9f1047afd6e79ffb1dc80a64224562eca54cc241667d62690c
- Size
  
  2.6MB
- MD5
  
  ddd4ee9fa1d4bdd4f67353817d9e9906
- SHA1
  
  03810981f68043e75d63afa5223514437654fc5e
- SHA256
  
  38b48ba645ac1d9f1047afd6e79ffb1dc80a64224562eca54cc241667d62690c
- SHA512
  
  d95c8d714ee2aac7faaa36eb1c63b4f572f5d43ed91ab873f745d4b790663fa2eed36bdbc3461b6108291f1f868fdaebafd03d4e56164a83b836fc46bce53cf3
- SSDEEP
  
  49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBtB/bS:sxX7QnxrloE5dpUpKb
Score

7^/10

persistence spyware stealer
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistencespywarestealer

behavioral2

persistencespywarestealer