6399b9b0999a8429a933fc9f1c0a117801ac881682c12727ef25656e28ba421d | Triage

Sharing

General

Target

prankV2.zip
Size

14.3MB
Sample

240819-rn7alsyfmf
MD5

6c617cdb33d8f90c74ada9a4587056c5
SHA1

05e34efab71190be6d2a5301966e7a258aaf3f9d
SHA256

6399b9b0999a8429a933fc9f1c0a117801ac881682c12727ef25656e28ba421d
SHA512

63fa46f350a447aa5635ef47c136feae9561540115fb0d4feffa4e37eeb3db6aeacb1dfd7a01fbb453d72987b3fd18f1dae61cf920b39d4aa440fcaab2977267
SSDEEP

393216:cNGp++RV+EG5YOq/DKZnUldaX5crTtZMY1L:cG+55YOqSnUb65crpZf

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  prank.exe
- Size
  
  14.5MB
- MD5
  
  3848137b0a5128ee5bdb4216d87bd2ea
- SHA1
  
  fa7414a21a517d376f51fe7afed7d25949d05ae3
- SHA256
  
  f92d50349e45df360b6aec4c47c4d3fa53e79575da3f417a1530ada0c4deb7dc
- SHA512
  
  6c6f03bdd0a15e20798d23ee8749ce3e315910eceb30e49bd8b104af302bd98f5061a1967e596dca6bfc0e81b7b3017e39e952d3a92642b950076fe159d6c1b0
- SSDEEP
  
  393216:LiIE7YoDUHk3mescGfdsYc2Pz21t/XYNk/yK3mkMII2:47rDCaG5FsjE+/YLKWu
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2