fc4713f4dcc5658899c9eb2b2e492d3837f56e1154f13f7dfb5b2ff89857fe71 | Triage

Sharing

General

Target

Wave_[unknowncheats.me]_.exe
Size

18.4MB
Sample

240716-k2177avcrk
MD5

6c38f385e687ce2782a0639369a74357
SHA1

c78859c608afb7981fd56f92fb2958a57b4456f2
SHA256

fc4713f4dcc5658899c9eb2b2e492d3837f56e1154f13f7dfb5b2ff89857fe71
SHA512

2e0ba9d14a8d23dc36513dd4196dcb9e426c9ca83bda9bc6a2372e60788d2db2df51ad7837c7e39658f7099b2daa888e9192ebc2347a662202761b349263fad2
SSDEEP

393216:W+tpnNCw+bX32N6FPuLBvXPgov7FDCBIsHplHWmvYZnN:vrT6Fyp1v+IsHp1vWN

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  Wave_[unknowncheats.me]_.exe
- Size
  
  18.4MB
- MD5
  
  6c38f385e687ce2782a0639369a74357
- SHA1
  
  c78859c608afb7981fd56f92fb2958a57b4456f2
- SHA256
  
  fc4713f4dcc5658899c9eb2b2e492d3837f56e1154f13f7dfb5b2ff89857fe71
- SHA512
  
  2e0ba9d14a8d23dc36513dd4196dcb9e426c9ca83bda9bc6a2372e60788d2db2df51ad7837c7e39658f7099b2daa888e9192ebc2347a662202761b349263fad2
- SSDEEP
  
  393216:W+tpnNCw+bX32N6FPuLBvXPgov7FDCBIsHplHWmvYZnN:vrT6Fyp1v+IsHp1vWN
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1