d41a19092dd01d1dd93c54aadcb421eb4730b3f3da81b7467efc8c4242c9453c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d41a19092dd01d1dd93c54aadcb421eb4730b3f3da81b7467efc8c4242c9453c
Size

1.3MB
Sample

240424-z4zjpshh36
MD5

41d805f51e1d10a97776cbcc9ae2fcbb
SHA1

d5b70a1db4826af97ca296bc980f50609279dc88
SHA256

d41a19092dd01d1dd93c54aadcb421eb4730b3f3da81b7467efc8c4242c9453c
SHA512

c6ab2309cf0b8c9c76c9d3f778b1797c39907e723e7c4bb4ed7d475220c94dc7a6f431abcdc803a7121bd2d89d2f774234a3ca5eccaf0419997f7dc1a493154f
SSDEEP

24576:gGB88ZazX8zzR5eQvkzDYpQPIAS0oopoojR+imUe/MqydMBw8RXs+FX:gGOXqe7MpQPIASwR+im9WeXH

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  d41a19092dd01d1dd93c54aadcb421eb4730b3f3da81b7467efc8c4242c9453c
- Size
  
  1.3MB
- MD5
  
  41d805f51e1d10a97776cbcc9ae2fcbb
- SHA1
  
  d5b70a1db4826af97ca296bc980f50609279dc88
- SHA256
  
  d41a19092dd01d1dd93c54aadcb421eb4730b3f3da81b7467efc8c4242c9453c
- SHA512
  
  c6ab2309cf0b8c9c76c9d3f778b1797c39907e723e7c4bb4ed7d475220c94dc7a6f431abcdc803a7121bd2d89d2f774234a3ca5eccaf0419997f7dc1a493154f
- SSDEEP
  
  24576:gGB88ZazX8zzR5eQvkzDYpQPIAS0oopoojR+imUe/MqydMBw8RXs+FX:gGOXqe7MpQPIASwR+im9WeXH
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2