d0e2e3ce6992890b66ea4773fd9c6549274d36843ac7467a8107ae0270cdeba0 | Triage

Sharing

General

Target

d0e2e3ce6992890b66ea4773fd9c6549274d36843ac7467a8107ae0270cdeba0
Size

2.6MB
Sample

240617-c1rncsvbnr
MD5

39910773f8deb3a8f3dd9e0a65c7e1c7
SHA1

166bf90ea54d8ee3398fa9176c9164265f475078
SHA256

d0e2e3ce6992890b66ea4773fd9c6549274d36843ac7467a8107ae0270cdeba0
SHA512

1ae84a57c9f628584f6754ad0e84c6d82d268f21cd1c3096574572714bae54c7bc1b43103512f9f81fc8a96a978ec900305c867eab82b8d19530f1c5d9f808b9
SSDEEP

49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bS:sxX7QnxrloE5dpUp7b

Score

7^/10

persistence spyware stealer

Malware Config

Targets

- Target
  
  d0e2e3ce6992890b66ea4773fd9c6549274d36843ac7467a8107ae0270cdeba0
- Size
  
  2.6MB
- MD5
  
  39910773f8deb3a8f3dd9e0a65c7e1c7
- SHA1
  
  166bf90ea54d8ee3398fa9176c9164265f475078
- SHA256
  
  d0e2e3ce6992890b66ea4773fd9c6549274d36843ac7467a8107ae0270cdeba0
- SHA512
  
  1ae84a57c9f628584f6754ad0e84c6d82d268f21cd1c3096574572714bae54c7bc1b43103512f9f81fc8a96a978ec900305c867eab82b8d19530f1c5d9f808b9
- SSDEEP
  
  49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bS:sxX7QnxrloE5dpUp7b
Score

7^/10

persistence spyware stealer
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistencespywarestealer

behavioral2

persistencespywarestealer