General

  • Target

    35cc9403db2b12cb186c02f48fed8ffdeb31fc28de8a7d1192e1158f1039a47e.bin.sample

  • Size

    2.1MB

  • Sample

    210716-hb583ty5k2

  • MD5

    3ce9f8409db88dd885adf957680e8e3c

  • SHA1

    f88f28cd49b8f2aa7eaee4b1ae840679c37bb62e

  • SHA256

    35cc9403db2b12cb186c02f48fed8ffdeb31fc28de8a7d1192e1158f1039a47e

  • SHA512

    483e3326f8f8df5c80e0c46f3162d7ecf8c0bce16095f2f82c453c5fc0164c672158d46591222a402911a7acca64a326ebaa211afb77fb9a17af6f795d955245

Malware Config

Targets

    • Target

      35cc9403db2b12cb186c02f48fed8ffdeb31fc28de8a7d1192e1158f1039a47e.bin.sample

    • Size

      2.1MB

    • MD5

      3ce9f8409db88dd885adf957680e8e3c

    • SHA1

      f88f28cd49b8f2aa7eaee4b1ae840679c37bb62e

    • SHA256

      35cc9403db2b12cb186c02f48fed8ffdeb31fc28de8a7d1192e1158f1039a47e

    • SHA512

      483e3326f8f8df5c80e0c46f3162d7ecf8c0bce16095f2f82c453c5fc0164c672158d46591222a402911a7acca64a326ebaa211afb77fb9a17af6f795d955245

    • Parasite, Nexus

      Parasite (or Nexus) is an infostealer written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks