1a002135b26f316cdc8d6bd0b1e089bbd80dc2b4616e7024b86968b33e78095b | Triage

Submit
Reports

Overview

overview

8

Static

static

1

jmjkjkkj.txt

windows10-1703-x64

8

jmjkjkkj.txt

windows10-2004-x64

1

Sharing

General

Target

jmjkjkkj.txt
Size

37B
Sample

240427-15yjgahf76
MD5

3ac7d7b9f4be93e6e1f6ae5942e2e56f
SHA1

30c9fc0ca55ad4e5a790ae3e376b1f22bf49dda7
SHA256

1a002135b26f316cdc8d6bd0b1e089bbd80dc2b4616e7024b86968b33e78095b
SHA512

1ffbd4be03e14de0860363210f5bf012ed7acf3992e18aa701097b71b53fa69620acb2fc813ffaccad545d5e110515dce448b10cfec84c18924f7e37b8c60f32

Score

8^/10

discovery spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

jmjkjkkj.txt

Resource

win10-20240404-en

discovery spyware stealer

windows10-1703-x64

21 signatures

150 seconds

Behavioral task

behavioral2

Sample

jmjkjkkj.txt

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  jmjkjkkj.txt
- Size
  
  37B
- MD5
  
  3ac7d7b9f4be93e6e1f6ae5942e2e56f
- SHA1
  
  30c9fc0ca55ad4e5a790ae3e376b1f22bf49dda7
- SHA256
  
  1a002135b26f316cdc8d6bd0b1e089bbd80dc2b4616e7024b86968b33e78095b
- SHA512
  
  1ffbd4be03e14de0860363210f5bf012ed7acf3992e18aa701097b71b53fa69620acb2fc813ffaccad545d5e110515dce448b10cfec84c18924f7e37b8c60f32
Score

8^/10

discovery spyware stealer
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Process Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

© 2018-2024

Terms | Privacy