56ffb100723c3e6466bc002d9a928e37e0f1fbdc766dbfbbd0eb8721e2fa68b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfd.exe
Size

452KB
Sample

240901-qz13assbrr
MD5

57c4141d31f6f44a058edcd91d67420a
SHA1

72524c020e50ccb46f5629e0a102e04bd72c366a
SHA256

56ffb100723c3e6466bc002d9a928e37e0f1fbdc766dbfbbd0eb8721e2fa68b1
SHA512

e668c375924f9bd9cb5657fde4f8a9713633d0b06d8928096c15f324dff98d9ef088229adfce6651174d068acc0a076c8a7c998afd8953c35c5b016581104ddc
SSDEEP

6144:5rltRqw34+KZOsrixjpY2v3IQ0xK/uWnVKZW0Kndu4iomCOX7Pkjt5I7wz:PtYwXK3ixjKI3II/FVKBuFmX7PyrI7C

Score

7^/10

defense_evasion spyware stealer

Malware Config

Targets

- Target
  
  dfd.exe
- Size
  
  452KB
- MD5
  
  57c4141d31f6f44a058edcd91d67420a
- SHA1
  
  72524c020e50ccb46f5629e0a102e04bd72c366a
- SHA256
  
  56ffb100723c3e6466bc002d9a928e37e0f1fbdc766dbfbbd0eb8721e2fa68b1
- SHA512
  
  e668c375924f9bd9cb5657fde4f8a9713633d0b06d8928096c15f324dff98d9ef088229adfce6651174d068acc0a076c8a7c998afd8953c35c5b016581104ddc
- SSDEEP
  
  6144:5rltRqw34+KZOsrixjpY2v3IQ0xK/uWnVKZW0Kndu4iomCOX7Pkjt5I7wz:PtYwXK3ixjKI3II/FVKBuFmX7PyrI7C
Score

7^/10

defense_evasion spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionspywarestealer