General

  • Target

    8381b8e4c30d15ec23cd8ccd5adf3da7a85797d4f88db02063b5f94fe48e7489

  • Size

    863KB

  • Sample

    221129-p48r9sah77

  • MD5

    b55ed7d43380eef1611705494ed3e6a2

  • SHA1

    f8aeb39c299c41b5cdc3ab951d4c4489cb7b1ba9

  • SHA256

    8381b8e4c30d15ec23cd8ccd5adf3da7a85797d4f88db02063b5f94fe48e7489

  • SHA512

    89fc94ba138f4e1c329f3833bf03e5412100c24be90a1d94c2908aeefda3f7ec9af6741697c10e742f085f2aa928f0ea56565380bf050ac615bf7f469f0998df

  • SSDEEP

    24576:chdTBERwhrCvGgP3LxdbTY7FNCweaFcpVGTajhCx3fNM:ODrIP3jTY7TCoUGaMK

Malware Config

Targets

    • Target

      8381b8e4c30d15ec23cd8ccd5adf3da7a85797d4f88db02063b5f94fe48e7489

    • Size

      863KB

    • MD5

      b55ed7d43380eef1611705494ed3e6a2

    • SHA1

      f8aeb39c299c41b5cdc3ab951d4c4489cb7b1ba9

    • SHA256

      8381b8e4c30d15ec23cd8ccd5adf3da7a85797d4f88db02063b5f94fe48e7489

    • SHA512

      89fc94ba138f4e1c329f3833bf03e5412100c24be90a1d94c2908aeefda3f7ec9af6741697c10e742f085f2aa928f0ea56565380bf050ac615bf7f469f0998df

    • SSDEEP

      24576:chdTBERwhrCvGgP3LxdbTY7FNCweaFcpVGTajhCx3fNM:ODrIP3jTY7TCoUGaMK

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks