pandastealer | 5dcdcee4ad221f5a09120fb60440afc54c3d6a2e62c9bd3ff76cf577e7031711 | Triage

Submit
Reports

Overview

overview

Static

static

ForceNitro.exe

windows11-21h2-x64

Sharing

General

Target

210624-qbwcpjfqhx_pw_infected.zip
Size

416KB
Sample

240221-tek25aba88
MD5

0b09f0860395935fb8d78653c70722a8
SHA1

8a573e49063058c44daa77119d9b61e3a6105d35
SHA256

5dcdcee4ad221f5a09120fb60440afc54c3d6a2e62c9bd3ff76cf577e7031711
SHA512

138eef315068119398c5cf41c66dd85cc92f7a1983b9df7729d4d3ccc4d6f11d6053fa97a5018cf1b876cc6528553c48c9eabf7132b77ccdd2e6fdc40b9fa80a
SSDEEP

12288:T/n9GGshsPSYIVqdU4ZK8goFCJpIiFv+RZYr85:Dnh4QSYI6Ur8goFCJyler85

Score

10^/10

pandastealer spyware stealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ForceNitro.exe

Resource

win11-20240221-en

pandastealer spyware stealer

windows11-21h2-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  ForceNitro.exe
- Size
  
  762KB
- MD5
  
  6abff90b8cb80533bca9eb040ed698da
- SHA1
  
  ae2e389320bec602965a5f12c13e595df870ac0f
- SHA256
  
  70b80a1a24d526e456893f0185550c15c3d914deaf8ebaa02d8817a15aa5bf80
- SHA512
  
  086e4c1eb5a32ae116ffeaf28995cf4e660460fec758c1c4708d0df30413b774924e863381b6a46125c09a82570fbde933f24cac8a0691751998eb075fff1813
- SSDEEP
  
  12288:RXfl4WqP5C+ZQpvBlUh1ArlVOs/mRtZJhg6VQ/IoDsp+LbMoUA5bQcoln+TMuHat:RXN4WO5upvH4ip/mRtZJVQ/IoDswYg0B
Score

10^/10

pandastealer spyware stealer
- PandaStealer
  Panda Stealer is a fork of CollectorProject Stealer written in C++.
  stealer pandastealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

pandastealerspywarestealer

© 2018-2024

Terms | Privacy