General

  • Target

    3f9c32d1d85d2482d45be99ccba91a38c16e712d31bc5ed92299c215fd8ed3e7

  • Size

    1.6MB

  • Sample

    221123-rvrhqshe96

  • MD5

    057d4caa10c7197dc8d24b8e0ec17400

  • SHA1

    699de8d7bc570c6a9a3500bf66e9230f9748c19c

  • SHA256

    3f9c32d1d85d2482d45be99ccba91a38c16e712d31bc5ed92299c215fd8ed3e7

  • SHA512

    94eb28210e09275ae3bae68e4cb712f740b6bcaae86849a5c0e8668d94dfec42d6f409bc33436823ecd877a0685444378b6e68e606d409a8c7eff533e17c9ef8

  • SSDEEP

    24576:V8KxJKb+XyQZ3jrEc0+q4Kim2kvzcmIFK3zJ9BPe//kN6Y3x4XbZiN6cpw2+P8sg:ob0xE4tmJWuNxobZyKRg

Malware Config

Targets

    • Target

      3f9c32d1d85d2482d45be99ccba91a38c16e712d31bc5ed92299c215fd8ed3e7

    • Size

      1.6MB

    • MD5

      057d4caa10c7197dc8d24b8e0ec17400

    • SHA1

      699de8d7bc570c6a9a3500bf66e9230f9748c19c

    • SHA256

      3f9c32d1d85d2482d45be99ccba91a38c16e712d31bc5ed92299c215fd8ed3e7

    • SHA512

      94eb28210e09275ae3bae68e4cb712f740b6bcaae86849a5c0e8668d94dfec42d6f409bc33436823ecd877a0685444378b6e68e606d409a8c7eff533e17c9ef8

    • SSDEEP

      24576:V8KxJKb+XyQZ3jrEc0+q4Kim2kvzcmIFK3zJ9BPe//kN6Y3x4XbZiN6cpw2+P8sg:ob0xE4tmJWuNxobZyKRg

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks