General

  • Target

    e53abcad827ff899a596a03456d31144b26d9a4b6fc6241ce5aecf2b4841371c

  • Size

    573KB

  • Sample

    220415-ll3xhsfhbr

  • MD5

    c9531869cbdf03333c99368be877b7e2

  • SHA1

    59209818bf3261ba17de8b561801abbd2892b4aa

  • SHA256

    e53abcad827ff899a596a03456d31144b26d9a4b6fc6241ce5aecf2b4841371c

  • SHA512

    88dbab0c4b8d6918b6c3c6295ad5119a19459ff44a83ad6f39431f6478d70754e5590cbce484abbcb62ac6ce62be75ed60033279e2b8de484963f8c8a0adbbcc

Score
10/10

Malware Config

Targets

    • Target

      e53abcad827ff899a596a03456d31144b26d9a4b6fc6241ce5aecf2b4841371c

    • Size

      573KB

    • MD5

      c9531869cbdf03333c99368be877b7e2

    • SHA1

      59209818bf3261ba17de8b561801abbd2892b4aa

    • SHA256

      e53abcad827ff899a596a03456d31144b26d9a4b6fc6241ce5aecf2b4841371c

    • SHA512

      88dbab0c4b8d6918b6c3c6295ad5119a19459ff44a83ad6f39431f6478d70754e5590cbce484abbcb62ac6ce62be75ed60033279e2b8de484963f8c8a0adbbcc

    Score
    10/10
    • Meta Stealer Stealer

      Meta Stealer steals passwords stored in browsers, written in C++.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks