afe034494d14ebcba13643aed15ce6353d7ca7c1f5c8c9b77bf8a787aedee568 | Triage

Resubmissions

09/08/2024, 15:26

240809-st945awdlc 8

09/08/2024, 15:21

240809-srs3tswdjg 7

Sharing

Copy URL Twitter E-mail

General

Target

Serveur priver.bat
Size

4KB
Sample

240809-srs3tswdjg
MD5

23d18a19c078859659e5c579b849b6db
SHA1

f82f23267d4ec2a778dad4603c0c7724b83c994f
SHA256

afe034494d14ebcba13643aed15ce6353d7ca7c1f5c8c9b77bf8a787aedee568
SHA512

08753d3ebb193867c568080d0c661e5b3f3d32026e0e9db920ebd6ca580ff202b141041a0beb63575628cb6869598a7bf6f70b9915d1ecf3bb3c32966c6dedd7
SSDEEP

24:YDp9tE1xKbo6Ux6ACXEYxbELO7xyoMbqQW8wTQzyRQqWCY3:YDp9teMbomAiXxbELQxxMRWv3WC6

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  Serveur priver.bat
- Size
  
  4KB
- MD5
  
  23d18a19c078859659e5c579b849b6db
- SHA1
  
  f82f23267d4ec2a778dad4603c0c7724b83c994f
- SHA256
  
  afe034494d14ebcba13643aed15ce6353d7ca7c1f5c8c9b77bf8a787aedee568
- SHA512
  
  08753d3ebb193867c568080d0c661e5b3f3d32026e0e9db920ebd6ca580ff202b141041a0beb63575628cb6869598a7bf6f70b9915d1ecf3bb3c32966c6dedd7
- SSDEEP
  
  24:YDp9tE1xKbo6Ux6ACXEYxbELO7xyoMbqQW8wTQzyRQqWCY3:YDp9teMbomAiXxbELQxxMRWv3WC6
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2