General

  • Target

    e246c844a272e80f2819e754e79a394e0fc964ad583ae90110dc38a01100b44d

  • Size

    126KB

  • Sample

    221124-x5a7dsha4v

  • MD5

    f6d14701e7c568254151e153f7763672

  • SHA1

    4501ffb7284f29cca51b06deba0262b8d33f93f6

  • SHA256

    e246c844a272e80f2819e754e79a394e0fc964ad583ae90110dc38a01100b44d

  • SHA512

    62c1d6cbe6531a6b5d2a9fcdddd91cc3971dd81f1f5208e88c02d97d066e1b04665122817acb228894937279c49ac627bdb3c42cb32e130e39201f3108cde8f2

Malware Config

Targets

    • Target

      e246c844a272e80f2819e754e79a394e0fc964ad583ae90110dc38a01100b44d

    • Size

      126KB

    • MD5

      f6d14701e7c568254151e153f7763672

    • SHA1

      4501ffb7284f29cca51b06deba0262b8d33f93f6

    • SHA256

      e246c844a272e80f2819e754e79a394e0fc964ad583ae90110dc38a01100b44d

    • SHA512

      62c1d6cbe6531a6b5d2a9fcdddd91cc3971dd81f1f5208e88c02d97d066e1b04665122817acb228894937279c49ac627bdb3c42cb32e130e39201f3108cde8f2

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    • Accesses Microsoft Outlook profiles

MITRE ATT&CK Matrix

Command and Control

    Credential Access

    Defense Evasion

      Discovery

        Execution

          Exfiltration

            Impact

              Initial Access

                Lateral Movement

                  Persistence

                    Privilege Escalation