1436da000d683dbe690bb6443ff1ebda9344573d3ddb9b806c57afb83027c69f | Triage

Sharing

General

Target

MALWARE.exe
Size

13.6MB
Sample

241119-x6mxks1bjb
MD5

1f2a13959339179bf070c75ce0d6e910
SHA1

6486e01ecaf794d99c2e94235c8ddaeb796526d3
SHA256

1436da000d683dbe690bb6443ff1ebda9344573d3ddb9b806c57afb83027c69f
SHA512

00e155955da422fcab4c9abc903ee1d74451e992194333750c24bed2f90e417873de38a9e831e7d3e97e27f641d6fc92cdf97462adf6d6d90cc54eb363076eb5
SSDEEP

393216:mLunf+1Xudu7cUDToBz4nYR62FxccxO573pj1hJk2lMf:m2f+auAUkzJSBZxzk2m

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  MALWARE.exe
- Size
  
  13.6MB
- MD5
  
  1f2a13959339179bf070c75ce0d6e910
- SHA1
  
  6486e01ecaf794d99c2e94235c8ddaeb796526d3
- SHA256
  
  1436da000d683dbe690bb6443ff1ebda9344573d3ddb9b806c57afb83027c69f
- SHA512
  
  00e155955da422fcab4c9abc903ee1d74451e992194333750c24bed2f90e417873de38a9e831e7d3e97e27f641d6fc92cdf97462adf6d6d90cc54eb363076eb5
- SSDEEP
  
  393216:mLunf+1Xudu7cUDToBz4nYR62FxccxO573pj1hJk2lMf:m2f+auAUkzJSBZxzk2m
Score

7^/10

spyware stealer
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1