704cab2bf16a082508df78a61e6234382df7e9edb304ad4761e812e3a2a0daf7 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

704cab2bf1...f7.exe

windows7-x64

7

704cab2bf1...f7.exe

windows10-2004-x64

7

Sharing

General

Target

704cab2bf16a082508df78a61e6234382df7e9edb304ad4761e812e3a2a0daf7
Size

1.8MB
Sample

240428-pjdfmaga5y
MD5

7c658a552de0bdf48920416e6d727923
SHA1

3c16f8f255355a514cb1e51af809eb646216a5ae
SHA256

704cab2bf16a082508df78a61e6234382df7e9edb304ad4761e812e3a2a0daf7
SHA512

25d1d9c33af05a7f467142f796d65973998227aedfefd27a737361ec785c74a0c164e31e003110f6c3e2dd8ec50ff93f399acbac78ba7fad43b5f40cc2a76f0c
SSDEEP

49152:Zx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAPFCo8R431o0+EjB:ZvbjVkjjCAzJAz801o0L

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

704cab2bf16a082508df78a61e6234382df7e9edb304ad4761e812e3a2a0daf7.exe

Resource

win7-20240221-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

704cab2bf16a082508df78a61e6234382df7e9edb304ad4761e812e3a2a0daf7.exe

Resource

win10v2004-20240226-en

spyware stealer

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  704cab2bf16a082508df78a61e6234382df7e9edb304ad4761e812e3a2a0daf7
- Size
  
  1.8MB
- MD5
  
  7c658a552de0bdf48920416e6d727923
- SHA1
  
  3c16f8f255355a514cb1e51af809eb646216a5ae
- SHA256
  
  704cab2bf16a082508df78a61e6234382df7e9edb304ad4761e812e3a2a0daf7
- SHA512
  
  25d1d9c33af05a7f467142f796d65973998227aedfefd27a737361ec785c74a0c164e31e003110f6c3e2dd8ec50ff93f399acbac78ba7fad43b5f40cc2a76f0c
- SSDEEP
  
  49152:Zx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAPFCo8R431o0+EjB:ZvbjVkjjCAzJAz801o0L
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy