d8526fdcfdc8cf198bedf7c8b816dbb20691db6ca3dfb7b12da3b65c274053a6 | Triage

Resubmissions

Sharing

General

Target

CANTSTOP.exe
Size

28.3MB
Sample

240524-w3vmksfa48
MD5

ef3f43e50202a09202ef0d57242851a7
SHA1

c063afde0f288ef0e86636f61154987adf3bf4f8
SHA256

d8526fdcfdc8cf198bedf7c8b816dbb20691db6ca3dfb7b12da3b65c274053a6
SHA512

bc64ad583133a2e94b32abe928d09aeeffde2d733a83291c13b1c65111fa2f8d70a290b54272014f05b310f4024e3d31583e99938d44840e3645f6051fc057d4
SSDEEP

786432:draAVWfKp1QtIJ2j6+s7LWB75zuPNua8DZcXzaYEC:ZRWiHiIJ2qHWB75iVf6R

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  CANTSTOP.exe
- Size
  
  28.3MB
- MD5
  
  ef3f43e50202a09202ef0d57242851a7
- SHA1
  
  c063afde0f288ef0e86636f61154987adf3bf4f8
- SHA256
  
  d8526fdcfdc8cf198bedf7c8b816dbb20691db6ca3dfb7b12da3b65c274053a6
- SHA512
  
  bc64ad583133a2e94b32abe928d09aeeffde2d733a83291c13b1c65111fa2f8d70a290b54272014f05b310f4024e3d31583e99938d44840e3645f6051fc057d4
- SSDEEP
  
  786432:draAVWfKp1QtIJ2j6+s7LWB75zuPNua8DZcXzaYEC:ZRWiHiIJ2qHWB75iVf6R
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1