c3c851a87dfeefddd807b9d1347d206fb1206e9be1ed9de0c342d06933cd0627 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3c851a87dfeefddd807b9d1347d206fb1206e9be1ed9de0c342d06933cd0627
Size

7.4MB
Sample

240628-ctwnqsyeqm
MD5

aa7829bdfd0ed35c9876e78f6cc2ecd1
SHA1

2a147c5968ee175cd8ff96d70ebfad60f9e097a4
SHA256

c3c851a87dfeefddd807b9d1347d206fb1206e9be1ed9de0c342d06933cd0627
SHA512

07c55411a85c1d2aa47f7bd024f31d495b7b49bcdd8a84b6025fd3be634b953f01e6ce6107a5a31b81e9bdd08737c1aedecdb16c30e1959428f21077a5ae0566
SSDEEP

98304:iu1Gs6UyF5Sj9CAtlZHxhIHVruP3WpF3UdE1hZHEdkFx2WCl2/V0cETQ/I:KGBrDhgJuP32+dmhZkaMr+Z

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  c3c851a87dfeefddd807b9d1347d206fb1206e9be1ed9de0c342d06933cd0627
- Size
  
  7.4MB
- MD5
  
  aa7829bdfd0ed35c9876e78f6cc2ecd1
- SHA1
  
  2a147c5968ee175cd8ff96d70ebfad60f9e097a4
- SHA256
  
  c3c851a87dfeefddd807b9d1347d206fb1206e9be1ed9de0c342d06933cd0627
- SHA512
  
  07c55411a85c1d2aa47f7bd024f31d495b7b49bcdd8a84b6025fd3be634b953f01e6ce6107a5a31b81e9bdd08737c1aedecdb16c30e1959428f21077a5ae0566
- SSDEEP
  
  98304:iu1Gs6UyF5Sj9CAtlZHxhIHVruP3WpF3UdE1hZHEdkFx2WCl2/V0cETQ/I:KGBrDhgJuP32+dmhZkaMr+Z
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2