Resubmissions

17-12-2023 18:11

231217-wsnraagff8 7

21-08-2023 16:59

230821-vhevysee56 10

General

  • Target

    mystery-case-files-the-last-resort-ceSetup.exe

  • Size

    140KB

  • Sample

    230821-vhevysee56

  • MD5

    df77eef5f98a55b97f5c8d616f5a786b

  • SHA1

    c2d256a0dc84ea9ee8e2e7ace976371ee3292d77

  • SHA256

    708b7feac52c49854eff42e2fc2343c261c35055d83a9d014eb47c1f973ab246

  • SHA512

    d379b3983ba3ce0da5c0932738a0060f10d7c65cf33e598ccdd9a816c23c9373526f67880108145aefcb6511208f8f9536366cd6973d3d1f96332c8c7d24a335

  • SSDEEP

    1536:fLXB65939tY6HBg4sXJbiwhKKS2n/TRVYxLnVV1KxSmiwpIfbmUOcVf2m74p2x3:fLk395hYXJbiZKD8hn0x5iVfiD4x

Malware Config

Targets

    • Target

      mystery-case-files-the-last-resort-ceSetup.exe

    • Size

      140KB

    • MD5

      df77eef5f98a55b97f5c8d616f5a786b

    • SHA1

      c2d256a0dc84ea9ee8e2e7ace976371ee3292d77

    • SHA256

      708b7feac52c49854eff42e2fc2343c261c35055d83a9d014eb47c1f973ab246

    • SHA512

      d379b3983ba3ce0da5c0932738a0060f10d7c65cf33e598ccdd9a816c23c9373526f67880108145aefcb6511208f8f9536366cd6973d3d1f96332c8c7d24a335

    • SSDEEP

      1536:fLXB65939tY6HBg4sXJbiwhKKS2n/TRVYxLnVV1KxSmiwpIfbmUOcVf2m74p2x3:fLk395hYXJbiZKD8hn0x5iVfiD4x

    • Banload

      Banload variants download malicious files, then install and execute the files.

    • Downloads MZ/PE file

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks