General

  • Target

    189f08a77b8ab8e303b93feefddbd786

  • Size

    297KB

  • Sample

    231224-27643acef9

  • MD5

    189f08a77b8ab8e303b93feefddbd786

  • SHA1

    7fd8cbeaa7e4111812a741b8bab7e09f8a3cb758

  • SHA256

    36de41dd1be23ff4553e1803585ad4e12162488d489ed229b7a402ed83870de0

  • SHA512

    58102acb4b2364a021ab062ce941972f3daabbc8e3efad7dc77c431f1bdd5246a405782e3affeaa9b24977a6e7fb65c4d693e1e5910cef03d12131d6a9fe7da2

  • SSDEEP

    6144:ZY94NHC8TKhK1SLo1xz4vzqgbIbIE4gssXv/USIJ3r84hrUfl:S9OHDTKhsSLo/z4vWgbIb94EvZk5rM

Malware Config

Targets

    • Target

      189f08a77b8ab8e303b93feefddbd786

    • Size

      297KB

    • MD5

      189f08a77b8ab8e303b93feefddbd786

    • SHA1

      7fd8cbeaa7e4111812a741b8bab7e09f8a3cb758

    • SHA256

      36de41dd1be23ff4553e1803585ad4e12162488d489ed229b7a402ed83870de0

    • SHA512

      58102acb4b2364a021ab062ce941972f3daabbc8e3efad7dc77c431f1bdd5246a405782e3affeaa9b24977a6e7fb65c4d693e1e5910cef03d12131d6a9fe7da2

    • SSDEEP

      6144:ZY94NHC8TKhK1SLo1xz4vzqgbIbIE4gssXv/USIJ3r84hrUfl:S9OHDTKhsSLo/z4vWgbIb94EvZk5rM

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks