General

  • Target

    d4337ea6b0e8ce975251fbcef178064bf22cfd628eafa1d15d0bffedaca3db9a.zip

  • Size

    38KB

  • Sample

    230816-g4p16aaa8t

  • MD5

    3cd6483f90641a722e2fcb0c2854678e

  • SHA1

    1d67ee3b43fe5c5b12a34da0feac9ba7bff97493

  • SHA256

    bd563a5b4a77c7193ecf6e68bc4bebd66114deb21920c5651f605eef37c47c13

  • SHA512

    1fc8e5b458d5f77f2219f9ec3af1d55c0a353d2bc354459e3e4943a50df726966a27be42d1747d9b877abda5a952b6c3907d9ec6c7327c50c95445e8239aad43

  • SSDEEP

    768:UdM/VP9yqX1kj0dYevkScWqULc2gnlf5nZlMSgyC0nVcJDy7PfygNt:hN1yqX1kj05tqV2gnlRnXMzyCocJurfx

Malware Config

Targets

    • Target

      206080caca565bb5e8d77a8b6f083af6b00c963fd41ef625116d18faad7b42ec

    • Size

      84KB

    • MD5

      fccc684a9389294d97693d15340c56da

    • SHA1

      5ddd4f11bbae985dcbae9f5b81c97a487121eea4

    • SHA256

      206080caca565bb5e8d77a8b6f083af6b00c963fd41ef625116d18faad7b42ec

    • SHA512

      d95392ddc55afa37dc9f353c75bfa3881cfcb778224143f1522b6a22ea933b6b4795fc47cc1af5f4ba6c83d2a6af68f6d610a99d109039b6aaab75b3743072df

    • SSDEEP

      1536:IgtyNMg6e89H9hXLZ3Bb/CAAu3KMjfGLkZ/te5p2gnXQqJSwEKAG2:IUySve89H9JDKAAu3KFmE54gnXQrwEKW

    • Phemedrone

      An information and wallet stealer written in C#.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks