General

  • Target

    51be359d440cf2bd509539f64209c04feb643d5beca03d074de52fc4926f5ed6

  • Size

    919KB

  • Sample

    221125-bzmgkscd86

  • MD5

    ce8449fcb9cb994a9020a9be3df9bd54

  • SHA1

    ae2d94cbf465e668a19fc6e1bdeaf3625fba7af4

  • SHA256

    51be359d440cf2bd509539f64209c04feb643d5beca03d074de52fc4926f5ed6

  • SHA512

    bb70cbd5013dae11f4797c325cc6ca43c80d9fda58e5d8d00b1e1392193c022da4488e94034cf1587f19f650064593c09121c0bb5c37b0756a4cc297a6f0c815

  • SSDEEP

    24576:h1OYdaOPMtdHAqcdDVhYwiei7+EpFAh/kKF:h1OsaPHVmVhYwiLtKkKF

Malware Config

Targets

    • Target

      51be359d440cf2bd509539f64209c04feb643d5beca03d074de52fc4926f5ed6

    • Size

      919KB

    • MD5

      ce8449fcb9cb994a9020a9be3df9bd54

    • SHA1

      ae2d94cbf465e668a19fc6e1bdeaf3625fba7af4

    • SHA256

      51be359d440cf2bd509539f64209c04feb643d5beca03d074de52fc4926f5ed6

    • SHA512

      bb70cbd5013dae11f4797c325cc6ca43c80d9fda58e5d8d00b1e1392193c022da4488e94034cf1587f19f650064593c09121c0bb5c37b0756a4cc297a6f0c815

    • SSDEEP

      24576:h1OYdaOPMtdHAqcdDVhYwiei7+EpFAh/kKF:h1OsaPHVmVhYwiLtKkKF

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks