General
-
Target
8c6c21855aff960c7f445472342e768144f5838c246847ab5afb806841590745.exe
-
Size
338KB
-
Sample
250211-thzdxssjcw
-
MD5
36a52cda091a0d5b20a567f0015308b4
-
SHA1
98c61b12b4d5988b82e54b62f91c564edec00722
-
SHA256
8c6c21855aff960c7f445472342e768144f5838c246847ab5afb806841590745
-
SHA512
4e3144359815ee380248674ae0b6592d67ed36d5fcee6ae41f483a093af47726cbb55693dd871cceab923d0d8e7eed8a317e291b6822dcc2da929b429db7e220
-
SSDEEP
6144:Fx2QdiglMFvsgR3M20JAEpugtfnqqDLuP+bFA+nguEeJ5:FAQsgSygNb21JfqqnuGbqSgH45
Malware Config
Targets
-
-
Target
8c6c21855aff960c7f445472342e768144f5838c246847ab5afb806841590745.exe
-
Size
338KB
-
MD5
36a52cda091a0d5b20a567f0015308b4
-
SHA1
98c61b12b4d5988b82e54b62f91c564edec00722
-
SHA256
8c6c21855aff960c7f445472342e768144f5838c246847ab5afb806841590745
-
SHA512
4e3144359815ee380248674ae0b6592d67ed36d5fcee6ae41f483a093af47726cbb55693dd871cceab923d0d8e7eed8a317e291b6822dcc2da929b429db7e220
-
SSDEEP
6144:Fx2QdiglMFvsgR3M20JAEpugtfnqqDLuP+bFA+nguEeJ5:FAQsgSygNb21JfqqnuGbqSgH45
Score10/10-
Trigona
A ransomware first seen at the beginning of the 2022.
-
Trigona family
-
Credentials from Password Stores: Windows Credential Manager
Suspicious access to Credentials History.
-
Drops startup file
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Drops desktop.ini file(s)
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
2Credentials from Web Browsers
1Windows Credential Manager
1Unsecured Credentials
1Credentials In Files
1