ec24f2d3c6a9a8c4a8a4ef1ce63e0450b675b41b97273eb1c2808a7dea7bbad3 | Triage

Sharing

General

Target

ec24f2d3c6a9a8c4a8a4ef1ce63e0450b675b41b97273eb1c2808a7dea7bbad3
Size

93KB
Sample

240601-x84ywadd77
MD5

48a320927d0ccae551150b3b6cea0038
SHA1

5096454fa48e6561519bf191992fc0a2086c51bc
SHA256

ec24f2d3c6a9a8c4a8a4ef1ce63e0450b675b41b97273eb1c2808a7dea7bbad3
SHA512

51405947d7a5558969f01434bdd3ed43b0da87dd2e7a2a4782f9f660a9a3c42660d66b1d0691804e53d3566725474056d4a90bcdf2ce9d71b420374ee6deb3e9
SSDEEP

1536:PKeaaYzMXqtGNttyUn01Q78a4Rqyapmebn4ddJZeY86iLflLJYEIs67rxo:P2aY46tGNttyJQ7KR/LK4ddJMY86ipmU

Score

8^/10

spyware stealer

Malware Config

Targets

- Target
  
  ec24f2d3c6a9a8c4a8a4ef1ce63e0450b675b41b97273eb1c2808a7dea7bbad3
- Size
  
  93KB
- MD5
  
  48a320927d0ccae551150b3b6cea0038
- SHA1
  
  5096454fa48e6561519bf191992fc0a2086c51bc
- SHA256
  
  ec24f2d3c6a9a8c4a8a4ef1ce63e0450b675b41b97273eb1c2808a7dea7bbad3
- SHA512
  
  51405947d7a5558969f01434bdd3ed43b0da87dd2e7a2a4782f9f660a9a3c42660d66b1d0691804e53d3566725474056d4a90bcdf2ce9d71b420374ee6deb3e9
- SSDEEP
  
  1536:PKeaaYzMXqtGNttyUn01Q78a4Rqyapmebn4ddJZeY86iLflLJYEIs67rxo:P2aY46tGNttyJQ7KR/LK4ddJMY86ipmU
Score

8^/10

spyware stealer
- Drops file in Drivers directory
- Deletes itself
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2