e83690f0d57d9cdb4aee58a92d2479c778167373e8cccb5be6e2d1244a6f31fd | Triage

Submit
Reports

Overview

overview

7

Static

static

3

e83690f0d5...fd.exe

windows7-x64

7

e83690f0d5...fd.exe

windows10-2004-x64

7

Sharing

General

Target

e83690f0d57d9cdb4aee58a92d2479c778167373e8cccb5be6e2d1244a6f31fd
Size

1.5MB
Sample

240701-emrsbaygjp
MD5

a32d005c4a3c540091b1a51c620b057b
SHA1

ca94fea0e1defbd9b8a694672072b8e7838c7ea4
SHA256

e83690f0d57d9cdb4aee58a92d2479c778167373e8cccb5be6e2d1244a6f31fd
SHA512

9e43f21951d7e07a451510ae3a3febeb25b581e3bf638414305e840d997520a8f908ffd7ac2266fc4461922b732ce4f5a5fd8c611988fdcc9ed959c05a02da41
SSDEEP

12288:NkA7d0NxksRpWE9FRHSfNm1wgbIxnBw7dzE+e3gxZC6LgjigDy5fdv8fWi+:2ACks7WE9F5pwg8zmdqQjC60jiHkU

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e83690f0d57d9cdb4aee58a92d2479c778167373e8cccb5be6e2d1244a6f31fd.exe

Resource

win7-20231129-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

e83690f0d57d9cdb4aee58a92d2479c778167373e8cccb5be6e2d1244a6f31fd.exe

Resource

win10v2004-20240611-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  e83690f0d57d9cdb4aee58a92d2479c778167373e8cccb5be6e2d1244a6f31fd
- Size
  
  1.5MB
- MD5
  
  a32d005c4a3c540091b1a51c620b057b
- SHA1
  
  ca94fea0e1defbd9b8a694672072b8e7838c7ea4
- SHA256
  
  e83690f0d57d9cdb4aee58a92d2479c778167373e8cccb5be6e2d1244a6f31fd
- SHA512
  
  9e43f21951d7e07a451510ae3a3febeb25b581e3bf638414305e840d997520a8f908ffd7ac2266fc4461922b732ce4f5a5fd8c611988fdcc9ed959c05a02da41
- SSDEEP
  
  12288:NkA7d0NxksRpWE9FRHSfNm1wgbIxnBw7dzE+e3gxZC6LgjigDy5fdv8fWi+:2ACks7WE9F5pwg8zmdqQjC60jiHkU
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Query Registry

Peripheral Device Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy