General

  • Target

    594f3a90d33f3aff01bfbbb70c041c10.exe

  • Size

    10.0MB

  • Sample

    230119-pzmn8sfh72

  • MD5

    594f3a90d33f3aff01bfbbb70c041c10

  • SHA1

    0ae956251174f6b9b2b032d3dd008f68a076d04a

  • SHA256

    4e5b920935f6f88dd433a2828dc9a7714160285764efc4202a011da132c8de2f

  • SHA512

    5157a2c4d3373eb4b346b6cc2f53ebf2e7af6666879120f742547620dd9d9bcfb9119d7ce2e6417af2c8d623393ba6206d9da455a415a20854a26ed46fbb9838

  • SSDEEP

    98304:PNK4WolqTjyBCxbE2gSpdPZDH9ePRqBarJUIN:xWfjE2gSpdPZDH9ePRqBaqo

Score
10/10

Malware Config

Extracted

Family

aurora

C2

45.15.156.210:8081

Targets

    • Target

      594f3a90d33f3aff01bfbbb70c041c10.exe

    • Size

      10.0MB

    • MD5

      594f3a90d33f3aff01bfbbb70c041c10

    • SHA1

      0ae956251174f6b9b2b032d3dd008f68a076d04a

    • SHA256

      4e5b920935f6f88dd433a2828dc9a7714160285764efc4202a011da132c8de2f

    • SHA512

      5157a2c4d3373eb4b346b6cc2f53ebf2e7af6666879120f742547620dd9d9bcfb9119d7ce2e6417af2c8d623393ba6206d9da455a415a20854a26ed46fbb9838

    • SSDEEP

      98304:PNK4WolqTjyBCxbE2gSpdPZDH9ePRqBarJUIN:xWfjE2gSpdPZDH9ePRqBaqo

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v6

Tasks