Resubmissions

22/02/2024, 17:30

240222-v3j1eade28 6

22/02/2024, 17:26

240222-v1ac7ach7s 7

General

  • Target

    ChromeSetup.exe

  • Size

    1.3MB

  • Sample

    240222-v1ac7ach7s

  • MD5

    93a2f1727a29ce608386c3ca121cb103

  • SHA1

    e6bf34fa6051fb0d8bb92392a558ea284bdd19d7

  • SHA256

    732ba29be92640c450bad06efc9c55e4492181496603529f33da67bccc92f25f

  • SHA512

    ea59e4d1188471ec7844b4a83c4fe927ab3be791199e58184e588e03bbcdd3aa7ac231ef42707b8bb4cb7694d14556bc3f034ab47d1cb1a5de4a882fe9ee5d8a

  • SSDEEP

    24576:PJvKJ4SrOlppYW0avlLWjD7fEYbYJm6KjOsBJy348D0MtkHF4eFgalMC/QnrtJQE:FKDWpP0OWDwYMJmh7a48D0qpeOC/sQE

Malware Config

Targets

    • Target

      ChromeSetup.exe

    • Size

      1.3MB

    • MD5

      93a2f1727a29ce608386c3ca121cb103

    • SHA1

      e6bf34fa6051fb0d8bb92392a558ea284bdd19d7

    • SHA256

      732ba29be92640c450bad06efc9c55e4492181496603529f33da67bccc92f25f

    • SHA512

      ea59e4d1188471ec7844b4a83c4fe927ab3be791199e58184e588e03bbcdd3aa7ac231ef42707b8bb4cb7694d14556bc3f034ab47d1cb1a5de4a882fe9ee5d8a

    • SSDEEP

      24576:PJvKJ4SrOlppYW0avlLWjD7fEYbYJm6KjOsBJy348D0MtkHF4eFgalMC/QnrtJQE:FKDWpP0OWDwYMJmh7a48D0qpeOC/sQE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks