61df94c5e0694076a062670efa67d59ac6e99bb6c79afef681f931a078a87185 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

61df94c5e0...85.exe

windows7-x64

7

61df94c5e0...85.exe

windows10-2004-x64

4

Sharing

General

Target

61df94c5e0694076a062670efa67d59ac6e99bb6c79afef681f931a078a87185
Size

1.8MB
Sample

240423-dvay4acc37
MD5

4a3c7ad7114e5fc03f50188c206134b9
SHA1

ae22416ec97b9c39fe2e7d334fbfed0480aa850d
SHA256

61df94c5e0694076a062670efa67d59ac6e99bb6c79afef681f931a078a87185
SHA512

a4a5d379dc0f85f5cc7cfe3ac2518e4ba5c2a8453922f28aab770dd6da2fce244480ac526c3b59a7999e609714d51450877e33f2da109c14a4101aa6feb225ae
SSDEEP

49152:yx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAoDmg27RnWGj:yvbjVkjjCAzJ9D527BWG

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

61df94c5e0694076a062670efa67d59ac6e99bb6c79afef681f931a078a87185.exe

Resource

win7-20240221-en

spyware stealer

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

61df94c5e0694076a062670efa67d59ac6e99bb6c79afef681f931a078a87185.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  61df94c5e0694076a062670efa67d59ac6e99bb6c79afef681f931a078a87185
- Size
  
  1.8MB
- MD5
  
  4a3c7ad7114e5fc03f50188c206134b9
- SHA1
  
  ae22416ec97b9c39fe2e7d334fbfed0480aa850d
- SHA256
  
  61df94c5e0694076a062670efa67d59ac6e99bb6c79afef681f931a078a87185
- SHA512
  
  a4a5d379dc0f85f5cc7cfe3ac2518e4ba5c2a8453922f28aab770dd6da2fce244480ac526c3b59a7999e609714d51450877e33f2da109c14a4101aa6feb225ae
- SSDEEP
  
  49152:yx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAoDmg27RnWGj:yvbjVkjjCAzJ9D527BWG
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy