pandastealer | 8cd9e929b7cb18538533a2bb8636ebabf89fc5ea5774ec4df55fea5d017d295d | Triage

Submit
Reports

Overview

overview

Static

static

AkrienBetaLoader.exe

windows10-2004-x64

7

AkrienBetaLoader.exe

windows11-21h2-x64

3

Sharing

General

Target

AkrienBetaLoader.zip
Size

365KB
Sample

240802-wf8kxstdrq
MD5

e3c1c2b01af4ef714f503542c39b934c
SHA1

dc02411b8d53923c4ed140db013d270d29a50945
SHA256

8cd9e929b7cb18538533a2bb8636ebabf89fc5ea5774ec4df55fea5d017d295d
SHA512

51b0121538d0b7f7f5b0b2787b36c3d863d754ab0c797ac0042f40aedcf0e28c8ac60b4a437df313ded1b608c5fb392da1ce0da3e4faff265effdac0b59923bd
SSDEEP

6144:riBO915AxK2Om/lIbDWBCJb6UFviJCff0lzvgD3oKhX43Vdg4ZAfOW5u/JtJRlWq:Oy120pb9646JGfevgeVdhZl+u/bJTW2B

Score

10^/10

pandastealer credential_access discovery spyware stealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

AkrienBetaLoader.exe

Resource

win10v2004-20240802-en

credential_access discovery spyware stealer

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

AkrienBetaLoader.exe

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  AkrienBetaLoader.exe
- Size
  
  632KB
- MD5
  
  304e98d3b21f4858da49568bcfb87820
- SHA1
  
  095eecbfde20afc7095fcab96faba64dfaea53ab
- SHA256
  
  54e04105761739b7217ede0e44822ef980389a403edb2129e79bf71822c3d145
- SHA512
  
  804ffa715da3973d3a262a035e0a2742d0b96662d00736cf3a7366b20d9077188abf06c129ce32d3981ebf93f1af96ebe891ab3e5debe2afabbae655a79981fa
- SSDEEP
  
  12288:qu02MXY5M92Sc9Cf7g9CXC2dDUpCDJlrjKLUozRSIlnk5:quj4qM9299CTg9CXCqDHrjKQ0nk5
Score

7^/10

credential_access discovery spyware stealer
- Reads data files stored by FTP clients
  Tries to access configuration files associated with programs like FileZilla.
  spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Unsecured Credentials: Credentials In Files
  Steal credentials from unsecured files.
  credential_access stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

credential_accessdiscoveryspywarestealer

behavioral2

© 2018-2024

Terms | Privacy