General

  • Target

    ChromeSetup.exe

  • Size

    1.3MB

  • Sample

    240222-zn91hafd95

  • MD5

    a28789cfdfb075ec387b51fd5bf3215f

  • SHA1

    23b91ecfb56f300fb11a8452853d1270bff88f64

  • SHA256

    cb3bf75a1f372ae41caf593d60b89b4ab3c3425c3a9d9893cf2df94927a7c910

  • SHA512

    3eb560d28cb54a9d535d2b6cefab96d5ad485540c57f767ef797d21f74297f1ac875bd6262a8e832978cbfb696f47792f91a6a098c8f9aa45710952215cd7ed3

  • SSDEEP

    24576:KJvKjZQYfXDPJZOE9PjCFaAL11MJY7pjtafbojRAaUtYQCK16dck0tWrHx:OK9QYfDPJZr9ra11M+jtIbCRLlv7p0tm

Malware Config

Targets

    • Target

      ChromeSetup.exe

    • Size

      1.3MB

    • MD5

      a28789cfdfb075ec387b51fd5bf3215f

    • SHA1

      23b91ecfb56f300fb11a8452853d1270bff88f64

    • SHA256

      cb3bf75a1f372ae41caf593d60b89b4ab3c3425c3a9d9893cf2df94927a7c910

    • SHA512

      3eb560d28cb54a9d535d2b6cefab96d5ad485540c57f767ef797d21f74297f1ac875bd6262a8e832978cbfb696f47792f91a6a098c8f9aa45710952215cd7ed3

    • SSDEEP

      24576:KJvKjZQYfXDPJZOE9PjCFaAL11MJY7pjtafbojRAaUtYQCK16dck0tWrHx:OK9QYfDPJZr9ra11M+jtIbCRLlv7p0tm

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks