f073344ffdd3d5d6c8da8bf71bcdab1a5c317ca76d92c5534284a045c7ef95f6 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

mediaget_3...19.zip

windows11-21h2-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

mediaget_3.01.4319.zip
Size

119.6MB
Sample

240430-wy6jaacg9w
MD5

9a64a2af1d91abf7ab0f8beef07e8864
SHA1

8d2315d3f5082de893aff175c3c0bbb48c3f3cb5
SHA256

f073344ffdd3d5d6c8da8bf71bcdab1a5c317ca76d92c5534284a045c7ef95f6
SHA512

141711ae68a48bfbf0b29ab7a4ff1214fd803205f18cf8a88cc5e50fbef673231b8981382aa94ee6c29c05753b237cd660ba7fb9c176c9ce86c27f9628ad386e
SSDEEP

3145728:aglj6uoN651+nCTdl5Qn2j/xYFHWOLJCUwkwf+bkPoCP0w0l:56LCUCTVgmxYFtNgkwukP3PJM

Score

9^/10

discovery spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

mediaget_3.01.4319.zip

Resource

win11-20240426-en

discovery spyware stealer

windows11-21h2-x64

17 signatures

300 seconds

Malware Config

Targets

- Target
  
  mediaget_3.01.4319.zip
- Size
  
  119.6MB
- MD5
  
  9a64a2af1d91abf7ab0f8beef07e8864
- SHA1
  
  8d2315d3f5082de893aff175c3c0bbb48c3f3cb5
- SHA256
  
  f073344ffdd3d5d6c8da8bf71bcdab1a5c317ca76d92c5534284a045c7ef95f6
- SHA512
  
  141711ae68a48bfbf0b29ab7a4ff1214fd803205f18cf8a88cc5e50fbef673231b8981382aa94ee6c29c05753b237cd660ba7fb9c176c9ce86c27f9628ad386e
- SSDEEP
  
  3145728:aglj6uoN651+nCTdl5Qn2j/xYFHWOLJCUwkwf+bkPoCP0w0l:56LCUCTVgmxYFtNgkwukP3PJM
Score

9^/10

discovery spyware stealer
- Contacts a large (4565) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Network Service Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

© 2018-2025

Terms | Privacy