7daf26e8ee10f8227dbadb227e3907cf9a7148defce19958250925aa057db477 | Triage

Sharing

General

Target

7daf26e8ee10f8227dbadb227e3907cf9a7148defce19958250925aa057db477
Size

950KB
Sample

240428-24lnysbd88
MD5

19c10caa0eb3032d457ec30380767c8c
SHA1

2a6c28b92dba01b8e0dc78ac0f53bec4ff9b7c0c
SHA256

7daf26e8ee10f8227dbadb227e3907cf9a7148defce19958250925aa057db477
SHA512

e483be6d260ac62febf358a4436214a5e4898ff0c5d396147a0a0ae398e0d29b8c3c0b200e2f1ca5276232c97aacb8aa76c33b802d5d47af04d4d51512ab7ba7
SSDEEP

24576:THuosyXM4GwPx7S1NSxv9q0AfNXmRyyGBF9nvmWdx:TRs6PI1NGvIfrn+E

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  7daf26e8ee10f8227dbadb227e3907cf9a7148defce19958250925aa057db477
- Size
  
  950KB
- MD5
  
  19c10caa0eb3032d457ec30380767c8c
- SHA1
  
  2a6c28b92dba01b8e0dc78ac0f53bec4ff9b7c0c
- SHA256
  
  7daf26e8ee10f8227dbadb227e3907cf9a7148defce19958250925aa057db477
- SHA512
  
  e483be6d260ac62febf358a4436214a5e4898ff0c5d396147a0a0ae398e0d29b8c3c0b200e2f1ca5276232c97aacb8aa76c33b802d5d47af04d4d51512ab7ba7
- SSDEEP
  
  24576:THuosyXM4GwPx7S1NSxv9q0AfNXmRyyGBF9nvmWdx:TRs6PI1NGvIfrn+E
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2