General

  • Target

    6348670e00e440dc256a7509f1fc99d0ae2f5aef6db785651b46d35cb408452b

  • Size

    651KB

  • Sample

    221106-3sbkaaaehn

  • MD5

    1a39201a87b22ca7f7968964272c7440

  • SHA1

    957a8bdb960caa3c6e8a5456699bf073d97827b5

  • SHA256

    6348670e00e440dc256a7509f1fc99d0ae2f5aef6db785651b46d35cb408452b

  • SHA512

    29895a1e3e91b4be0f1be241f24370cc5f0bbfe05d0a873fc8673bb5bb8e209d6124a0a8b09d000ebba0ded2d9202f25268d9c78ad5359c5e645b9ae49eadd76

  • SSDEEP

    12288:m/36Cpd8FZTJk2XgQLgtCX7E15EHuoXrTlg5qt86+lioa+oYzGKuIj:m/3ZkZTJ1rMtig1IdTdt8bpoYzTu8

Malware Config

Targets

    • Target

      6348670e00e440dc256a7509f1fc99d0ae2f5aef6db785651b46d35cb408452b

    • Size

      651KB

    • MD5

      1a39201a87b22ca7f7968964272c7440

    • SHA1

      957a8bdb960caa3c6e8a5456699bf073d97827b5

    • SHA256

      6348670e00e440dc256a7509f1fc99d0ae2f5aef6db785651b46d35cb408452b

    • SHA512

      29895a1e3e91b4be0f1be241f24370cc5f0bbfe05d0a873fc8673bb5bb8e209d6124a0a8b09d000ebba0ded2d9202f25268d9c78ad5359c5e645b9ae49eadd76

    • SSDEEP

      12288:m/36Cpd8FZTJk2XgQLgtCX7E15EHuoXrTlg5qt86+lioa+oYzGKuIj:m/3ZkZTJ1rMtig1IdTdt8bpoYzTu8

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

MITRE ATT&CK Enterprise v6

Tasks