General

  • Target

    6dafcaf7e6dae54f0d55990c6646fb94

  • Size

    893KB

  • Sample

    231226-peyk1ahhdr

  • MD5

    6dafcaf7e6dae54f0d55990c6646fb94

  • SHA1

    da22d59063e5822813c9cec966ac603b706f10f4

  • SHA256

    5452e789a539154746a460224acd20e2b5484bd34d674706af01db7aba0796d0

  • SHA512

    2f7bd5b661c2488f91d930590a9f227f065247bd48e20a9b265c374551870a88e17ccdf4e366f3010517ee5b09856d754caa3e8358d148234e2a827533f49640

  • SSDEEP

    24576:QLZWDlv+glws82drAONC4K2qo+E1kKYUa2:QLZWhv/istdrxNC/Po+EnO2

Malware Config

Targets

    • Target

      6dafcaf7e6dae54f0d55990c6646fb94

    • Size

      893KB

    • MD5

      6dafcaf7e6dae54f0d55990c6646fb94

    • SHA1

      da22d59063e5822813c9cec966ac603b706f10f4

    • SHA256

      5452e789a539154746a460224acd20e2b5484bd34d674706af01db7aba0796d0

    • SHA512

      2f7bd5b661c2488f91d930590a9f227f065247bd48e20a9b265c374551870a88e17ccdf4e366f3010517ee5b09856d754caa3e8358d148234e2a827533f49640

    • SSDEEP

      24576:QLZWDlv+glws82drAONC4K2qo+E1kKYUa2:QLZWhv/istdrxNC/Po+EnO2

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks