General

  • Target

    adf5681bef0a2003f161912c02f43de4.exe

  • Size

    164KB

  • Sample

    240107-yczjyscgdr

  • MD5

    adf5681bef0a2003f161912c02f43de4

  • SHA1

    98cafa46d3ebf7ef76e1b5ca6ddf89a47f8f5372

  • SHA256

    e2638f93a7b62ec160a26af084f9ccd22a8feb9ba2df2b95ff78e00514cc215e

  • SHA512

    623b15bfa2d28ba1b7c3c7efc54195bce9b2d1eb26b1625327bf2dddfbf44ff96f088f3cc2d13cbe389a8373cbd6d73b8f4c3c6e73abd4fd62cbf0d2ae891cdf

  • SSDEEP

    3072:yHJkC5uBvIgBOie2B90w0BvjZLswGHb8fciW73RA3MXxG4bb7V/VU:y+quBvTOi70zBv10bOciWry+

Malware Config

Targets

    • Target

      adf5681bef0a2003f161912c02f43de4.exe

    • Size

      164KB

    • MD5

      adf5681bef0a2003f161912c02f43de4

    • SHA1

      98cafa46d3ebf7ef76e1b5ca6ddf89a47f8f5372

    • SHA256

      e2638f93a7b62ec160a26af084f9ccd22a8feb9ba2df2b95ff78e00514cc215e

    • SHA512

      623b15bfa2d28ba1b7c3c7efc54195bce9b2d1eb26b1625327bf2dddfbf44ff96f088f3cc2d13cbe389a8373cbd6d73b8f4c3c6e73abd4fd62cbf0d2ae891cdf

    • SSDEEP

      3072:yHJkC5uBvIgBOie2B90w0BvjZLswGHb8fciW73RA3MXxG4bb7V/VU:y+quBvTOi70zBv10bOciWry+

    • Modifies WinLogon for persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks