General

  • Target

    a0d61f2f164b78e4de5ce03a0e14cc5f.exe

  • Size

    3.1MB

  • Sample

    230206-yx9knaff87

  • MD5

    a0d61f2f164b78e4de5ce03a0e14cc5f

  • SHA1

    fe83957ad076ed8b6f8c327b0c4c0a191bce62a6

  • SHA256

    5fd08734c0379fc5b78aa4e80fb12080735e86404d279fd43903d1d54c278989

  • SHA512

    fe7497e4b351553e040a49fc21b264d649d0fe1ecff22415580540f6a440d3ca5b5be0740da7e7378785b6432dd204e484284b8d7b6b1bf166ad73216ddafb5c

  • SSDEEP

    49152:/ojHY5zbJL9HunLCwU9LhopBqiITRf+EGg7dofRaZ5qTj6k1RX:/WcvJpHI2L6pjfnTd

Score
10/10

Malware Config

Extracted

Family

aurora

C2

45.15.156.224:8081

Targets

    • Target

      a0d61f2f164b78e4de5ce03a0e14cc5f.exe

    • Size

      3.1MB

    • MD5

      a0d61f2f164b78e4de5ce03a0e14cc5f

    • SHA1

      fe83957ad076ed8b6f8c327b0c4c0a191bce62a6

    • SHA256

      5fd08734c0379fc5b78aa4e80fb12080735e86404d279fd43903d1d54c278989

    • SHA512

      fe7497e4b351553e040a49fc21b264d649d0fe1ecff22415580540f6a440d3ca5b5be0740da7e7378785b6432dd204e484284b8d7b6b1bf166ad73216ddafb5c

    • SSDEEP

      49152:/ojHY5zbJL9HunLCwU9LhopBqiITRf+EGg7dofRaZ5qTj6k1RX:/WcvJpHI2L6pjfnTd

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Matrix ATT&CK v6

Credential Access

Credentials in Files

2
T1081

Collection

Data from Local System

2
T1005

Tasks