General

  • Target

    3555e9d68e33308c3a1b3ac80a119d2e8a76b2c21ea47cd42014e7586cdd6a0e

  • Size

    1.8MB

  • Sample

    240221-jhsk9sde27

  • MD5

    e67eb0f1931598048a86b631ca38dc08

  • SHA1

    c9cd4fda324ea1484b7b7c1a02ac70ea195aaa86

  • SHA256

    3555e9d68e33308c3a1b3ac80a119d2e8a76b2c21ea47cd42014e7586cdd6a0e

  • SHA512

    53a19010fb91490781a00d4f197c50f50d4b30e81453a85697ef69e1ffd0a089638cd200615882d1037aac74e1266065b431882fd4a94fe55ca9875ec7ca1daf

  • SSDEEP

    24576:j3vLR2VhZBJ905EmMyPnQxhe4nLwvHYgUBoHDC/hR:j3dUZTH7LAl

Malware Config

Targets

    • Target

      3555e9d68e33308c3a1b3ac80a119d2e8a76b2c21ea47cd42014e7586cdd6a0e

    • Size

      1.8MB

    • MD5

      e67eb0f1931598048a86b631ca38dc08

    • SHA1

      c9cd4fda324ea1484b7b7c1a02ac70ea195aaa86

    • SHA256

      3555e9d68e33308c3a1b3ac80a119d2e8a76b2c21ea47cd42014e7586cdd6a0e

    • SHA512

      53a19010fb91490781a00d4f197c50f50d4b30e81453a85697ef69e1ffd0a089638cd200615882d1037aac74e1266065b431882fd4a94fe55ca9875ec7ca1daf

    • SSDEEP

      24576:j3vLR2VhZBJ905EmMyPnQxhe4nLwvHYgUBoHDC/hR:j3dUZTH7LAl

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks