General

  • Target

    InstallerFilex_64.exe

  • Size

    518.1MB

  • Sample

    221229-s2ggsagf21

  • MD5

    133fe7a5fa7a27def003b3ae71710269

  • SHA1

    eb537038568f9428af19040b1877c63cb3b0346b

  • SHA256

    4c2b3833be0ea9acd13c73dbecd132ef5324588330e4746c460514ac85d48c22

  • SHA512

    411b83c196f254dff3c0394a87855d48926ac10f491114af789b09f4d0bfb1c0547f33a12836e93cb2d010eb56d3a6f63b8ab86481e8070ec49c40aa935162be

  • SSDEEP

    49152:msjaqywUV9/fSx449FeL01POiITRf+EGg7dI3dai5wT06k1ML3Wq:5GBDVFfEIL2J3uTvjWq

Score
10/10

Malware Config

Extracted

Family

aurora

C2

82.115.223.249:8081

Targets

    • Target

      InstallerFilex_64.exe

    • Size

      518.1MB

    • MD5

      133fe7a5fa7a27def003b3ae71710269

    • SHA1

      eb537038568f9428af19040b1877c63cb3b0346b

    • SHA256

      4c2b3833be0ea9acd13c73dbecd132ef5324588330e4746c460514ac85d48c22

    • SHA512

      411b83c196f254dff3c0394a87855d48926ac10f491114af789b09f4d0bfb1c0547f33a12836e93cb2d010eb56d3a6f63b8ab86481e8070ec49c40aa935162be

    • SSDEEP

      49152:msjaqywUV9/fSx449FeL01POiITRf+EGg7dI3dai5wT06k1ML3Wq:5GBDVFfEIL2J3uTvjWq

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v6

Tasks