f24a6690448778c133298e0f7a226e0e557e0e651cabd0680fdb4e15581fe637 | Triage

Sharing

General

Target

WindowsBoot.exe
Size

10.6MB
Sample

241119-xrqd6avqak
MD5

8e3739ade3a87f5e62003fcd2ff09439
SHA1

060d69174bfc8831e8166c7d1fb75177b2ce71e4
SHA256

f24a6690448778c133298e0f7a226e0e557e0e651cabd0680fdb4e15581fe637
SHA512

aa77ffe1f721e304804fdc7016d4aaf0f627ca7951347ce5ec939028b0a33902862a71d54762be3ac2c495b78d00d064d6b2462df15c0cfe75b2ada978079b1d
SSDEEP

196608:LAW0rYD2bjT6pA88zl4hzlW7wOTZumKd04edyIxd0D0Nh7di9go4:03rYDQw8zqBW7bTwmc04ilWa7d6

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  WindowsBoot.exe
- Size
  
  10.6MB
- MD5
  
  8e3739ade3a87f5e62003fcd2ff09439
- SHA1
  
  060d69174bfc8831e8166c7d1fb75177b2ce71e4
- SHA256
  
  f24a6690448778c133298e0f7a226e0e557e0e651cabd0680fdb4e15581fe637
- SHA512
  
  aa77ffe1f721e304804fdc7016d4aaf0f627ca7951347ce5ec939028b0a33902862a71d54762be3ac2c495b78d00d064d6b2462df15c0cfe75b2ada978079b1d
- SSDEEP
  
  196608:LAW0rYD2bjT6pA88zl4hzlW7wOTZumKd04edyIxd0D0Nh7di9go4:03rYDQw8zqBW7bTwmc04ilWa7d6
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1