General
-
Target
NameBomb.exe
-
Size
8KB
-
Sample
240726-jncr1aydkg
-
MD5
6bb79d73a1ac2c86804c2096b00b8ded
-
SHA1
e1e94b5add65854fbab992e188bfb3b7717a784b
-
SHA256
4bb7aa314779b18c2e511ce1ff63e109567e328fd0898fcdee7964bc5eedea9a
-
SHA512
9de24ee6e8f57916bbe03ce4d1ef699a6fe00bf54a63fc0cedd2083f8d41bb98ba0417a35a0b4011e1abc4f908f45fefcd5ea184a7de05d31f7a2c3fd4f055fb
-
SSDEEP
96:ElQ6lQmoVYk+uHHBA1SRYHM49EEZv3RMFj0+w0LvbZlw8ut/Vf0CI5zNt:n6lQBYk+G+AbFec0+w0LDZVut/Vf0x7
Malware Config
Targets
-
-
Target
NameBomb.exe
-
Size
8KB
-
MD5
6bb79d73a1ac2c86804c2096b00b8ded
-
SHA1
e1e94b5add65854fbab992e188bfb3b7717a784b
-
SHA256
4bb7aa314779b18c2e511ce1ff63e109567e328fd0898fcdee7964bc5eedea9a
-
SHA512
9de24ee6e8f57916bbe03ce4d1ef699a6fe00bf54a63fc0cedd2083f8d41bb98ba0417a35a0b4011e1abc4f908f45fefcd5ea184a7de05d31f7a2c3fd4f055fb
-
SSDEEP
96:ElQ6lQmoVYk+uHHBA1SRYHM49EEZv3RMFj0+w0LvbZlw8ut/Vf0CI5zNt:n6lQBYk+G+AbFec0+w0LDZVut/Vf0x7
Score9/10-
Credentials from Password Stores: Credentials from Web Browsers
Malicious Access or copy of Web Browser Credential store.
-
Credentials from Password Stores: Windows Credential Manager
Suspicious access to Credentials History.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
2Credentials from Web Browsers
1Windows Credential Manager
1Unsecured Credentials
1Credentials In Files
1