80d8ed37194593ef2ae49f5aded7cfd1f9f0704fc70e9a6a0a5d192a73959d81 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

80d8ed37194593ef2ae49f5aded7cfd1f9f0704fc70e9a6a0a5d192a73959d81.exe
Size

6.3MB
Sample

240821-b9vwpsvakg
MD5

9bcf4bc8cf5561ec48f0249f3ce444eb
SHA1

4e315ac1944ae431689e291f7521b3fd9497c65c
SHA256

80d8ed37194593ef2ae49f5aded7cfd1f9f0704fc70e9a6a0a5d192a73959d81
SHA512

fa4aec52aa21f77c0b0f65294b887952f7ff799c9ab7b808674a5250571430950be2219fb5678727d92c248d3b6bbb34928205bd4a01100a1a2ee4867593354f
SSDEEP

98304:HjBHnc9UhCSVDbOCRub5CToTyR8eaBEnyVA:D9qunZETyR8e6KyVA

Score

9^/10

credential_access discovery spyware stealer

Malware Config

Targets

- Target
  
  80d8ed37194593ef2ae49f5aded7cfd1f9f0704fc70e9a6a0a5d192a73959d81.exe
- Size
  
  6.3MB
- MD5
  
  9bcf4bc8cf5561ec48f0249f3ce444eb
- SHA1
  
  4e315ac1944ae431689e291f7521b3fd9497c65c
- SHA256
  
  80d8ed37194593ef2ae49f5aded7cfd1f9f0704fc70e9a6a0a5d192a73959d81
- SHA512
  
  fa4aec52aa21f77c0b0f65294b887952f7ff799c9ab7b808674a5250571430950be2219fb5678727d92c248d3b6bbb34928205bd4a01100a1a2ee4867593354f
- SSDEEP
  
  98304:HjBHnc9UhCSVDbOCRub5CToTyR8eaBEnyVA:D9qunZETyR8e6KyVA
Score

9^/10

credential_access discovery spyware stealer
- Credentials from Password Stores: Credentials from Web Browsers
  Malicious Access or copy of Web Browser Credential store.
  credential_access stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

credential_accessdiscoveryspywarestealer

behavioral2

credential_accessdiscoveryspywarestealer