General

  • Target

    50d48404f9b93a16c69aed2e6c585192.bin

  • Size

    1.2MB

  • Sample

    230214-bpd3fshb2v

  • MD5

    0bb5c0df429985c37de10e88a76ca403

  • SHA1

    957c8ffca40a9a61521055678476054e4f981367

  • SHA256

    77d6fb8a2579012ae839c1488c2b44bf75ae924211749cacfa482791174fd45d

  • SHA512

    2036a0d485db18c3525d8e08f84474413e4aaf7e2a2cff4b6229fae2faca58de655f872085d4ca8170590822ed0b17ed57c3815d0799b71b680542dd3cb1aeba

  • SSDEEP

    24576:yuz0HB0FsrOn1lmsrepS7SLlq+yuTue6IMrYd1kHjug4DzetqJS:yuowlGsrepS7klSuTYYUHsDzyqg

Score
10/10

Malware Config

Extracted

Family

aurora

C2

107.182.129.73:8081

Targets

    • Target

      0a6ed49a01a7c4cad6ea914495d5789b97a9993508fe82ff3232613afb2a0789.exe

    • Size

      3.0MB

    • MD5

      50d48404f9b93a16c69aed2e6c585192

    • SHA1

      3f949a4b96bac4f7e1cec881edb5b65295410a1c

    • SHA256

      0a6ed49a01a7c4cad6ea914495d5789b97a9993508fe82ff3232613afb2a0789

    • SHA512

      0e6616e1c537ca77e113184adf6aca8677c6d35d3415bccac5e22aa9735cd0be13ce837ee7583553d4db16700fd77973de711f7c24126a9be6d7525c86fc9774

    • SSDEEP

      49152:Eer33gFd4ujF1gD2hJAUIaEsLFA8uJp5vk1b:d04yhDTLO8uE

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v6

Tasks