General

  • Target

    7ff36c78c59f7cbbfced8c002febb443

  • Size

    48KB

  • Sample

    240129-qqgbjacbhl

  • MD5

    7ff36c78c59f7cbbfced8c002febb443

  • SHA1

    d8e88b7b160e01224eb10b388fbc9071789ab7a7

  • SHA256

    e93674e4a69e4233821c9f571a7985b150a8887fac7f7727f938736e96be43ff

  • SHA512

    7506af8465820b2c82e5d69e12f36f11db1c68f61a386be2ae5591603f6c115686f32d45d61909732c46d154ca093ba2278251fd4966a63af6139596c3060730

  • SSDEEP

    768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFVujVgLmm1wDYN+CGYtT:SKcR4mjD9r823FVujVgD7wfO

Malware Config

Targets

    • Target

      7ff36c78c59f7cbbfced8c002febb443

    • Size

      48KB

    • MD5

      7ff36c78c59f7cbbfced8c002febb443

    • SHA1

      d8e88b7b160e01224eb10b388fbc9071789ab7a7

    • SHA256

      e93674e4a69e4233821c9f571a7985b150a8887fac7f7727f938736e96be43ff

    • SHA512

      7506af8465820b2c82e5d69e12f36f11db1c68f61a386be2ae5591603f6c115686f32d45d61909732c46d154ca093ba2278251fd4966a63af6139596c3060730

    • SSDEEP

      768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFVujVgLmm1wDYN+CGYtT:SKcR4mjD9r823FVujVgD7wfO

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks