8017b039e14c0323a496ce2a865bf0760a25dffbb54d803fe98c2345b84aeb4f | Triage

Sharing

General

Target

2024-05-22_b600f711cfa8bddc0ed8943f7f97a55c_megazord
Size

5.4MB
Sample

240522-c8swdshg98
MD5

b600f711cfa8bddc0ed8943f7f97a55c
SHA1

096a71bde0db52df2dc4598fbef760c60c5fdcc7
SHA256

8017b039e14c0323a496ce2a865bf0760a25dffbb54d803fe98c2345b84aeb4f
SHA512

7b129447f1db49fd66ab2ed40249c443d131928359560f92f0c4f44624bf5374a3892dab07ef58473da0490711428ec990fcc3b361a22e67070134a868e9cd4e
SSDEEP

49152:FyaYC2+tw6s/3EmScKaOFVDWZLkQ8GOmQtWkccKJlD3/khr76f7HN0QBsCe7hA02:FyVSc3FLJoqfBSLFPq2vDWqgnj

Score

7^/10

execution spyware stealer

Malware Config

Targets

- Target
  
  2024-05-22_b600f711cfa8bddc0ed8943f7f97a55c_megazord
- Size
  
  5.4MB
- MD5
  
  b600f711cfa8bddc0ed8943f7f97a55c
- SHA1
  
  096a71bde0db52df2dc4598fbef760c60c5fdcc7
- SHA256
  
  8017b039e14c0323a496ce2a865bf0760a25dffbb54d803fe98c2345b84aeb4f
- SHA512
  
  7b129447f1db49fd66ab2ed40249c443d131928359560f92f0c4f44624bf5374a3892dab07ef58473da0490711428ec990fcc3b361a22e67070134a868e9cd4e
- SSDEEP
  
  49152:FyaYC2+tw6s/3EmScKaOFVDWZLkQ8GOmQtWkccKJlD3/khr76f7HN0QBsCe7hA02:FyVSc3FLJoqfBSLFPq2vDWqgnj
Score

7^/10

execution spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

executionspywarestealer

behavioral2

executionspywarestealer