General

  • Target

    activate.7z

  • Size

    5.5MB

  • Sample

    240108-ebblysbeg9

  • MD5

    2ec476752dff483c9d58454bfe8af5ee

  • SHA1

    62e17ace6788421ce87a10afef3f5626b8546389

  • SHA256

    24f4c40c37f3be71b1435d345a4dea4d4f10e99c741382f080e261c0ac013e12

  • SHA512

    65c7ee025ea6105e4ddc673520bfc33878904e633accb88de2eb7a45053a341d80dd64eef6ed9c46e5559f3ee2e9063add10713028248bd75ccab0db70b0494d

  • SSDEEP

    98304:D8jvnbNKjLVnSxJt50y6sNNmJA+xLxHT4GZ2bGMHNWg09scA8OFvljt6BQOEQ:I7JKUJ41sD+5hUGZ2bGMHNU9sBZ4SOEQ

Malware Config

Targets

    • Target

      activate.exe

    • Size

      693.8MB

    • MD5

      cf51b737222c8062294d286c75aea4d4

    • SHA1

      fea42ecf11368e94ddd4a8117b3533ba4fba1d43

    • SHA256

      bfddc185531a82d9b239edaf1b6eb2a4a738af91936822a6130ea0f11fead7bd

    • SHA512

      e5e4e2075168c3076f4237f3a6caa9a85522cb3a3900400fd0f889af79c43e6724a7428824e78cdb3f7e3e93d729804c8d968884610e1ab67aa15cc0e3dea2bd

    • SSDEEP

      98304:avHxUXBE9RaqJlkJ5zE7+MrL9gy3pxHT3ZtYeC0ZUIlUscAWOrP3c5mPy:uH0a3kDg+TyZhbZtYeC0ZfUsVck

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks