General

  • Target

    57f1f5e3d642d6171650a2833ae66621

  • Size

    35KB

  • Sample

    240113-erv1jacea7

  • MD5

    57f1f5e3d642d6171650a2833ae66621

  • SHA1

    ba801f12c1d5640030b4f97c8459921c08b4c796

  • SHA256

    5a6226384699025bc36f627b2c9f139360146226eb44ffed89befad44f47f1ff

  • SHA512

    cf96cce191143422b61ef29a02790cc3f2c000eb96e7d837c68824a20ffb81c3a3c22cebc58226f58127ce8a77a55f048a98afcb8ccc5628e07658608539eb15

  • SSDEEP

    768:X8Q2ZDX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIom46+Ix:s9Z3KcR4mjD9r8226+U

Malware Config

Targets

    • Target

      57f1f5e3d642d6171650a2833ae66621

    • Size

      35KB

    • MD5

      57f1f5e3d642d6171650a2833ae66621

    • SHA1

      ba801f12c1d5640030b4f97c8459921c08b4c796

    • SHA256

      5a6226384699025bc36f627b2c9f139360146226eb44ffed89befad44f47f1ff

    • SHA512

      cf96cce191143422b61ef29a02790cc3f2c000eb96e7d837c68824a20ffb81c3a3c22cebc58226f58127ce8a77a55f048a98afcb8ccc5628e07658608539eb15

    • SSDEEP

      768:X8Q2ZDX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIom46+Ix:s9Z3KcR4mjD9r8226+U

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks