General

  • Target

    a7e7c55d763359f4b590ea4eec10b800

  • Size

    430KB

  • Sample

    240227-b7271ade74

  • MD5

    a7e7c55d763359f4b590ea4eec10b800

  • SHA1

    c9c9c25f0f90048face442c607428cfbfdc3798b

  • SHA256

    7ea4937a54c4f1373be662d2a8c3bb4aa34faf25dff90318921bdc5a5853524c

  • SHA512

    71fedc8d1d8961c9e253876f66f434694fe7df200d391af577602a83046bc4698bb174cb93ecc78ef9bb4b75fa19cf15d35d21f4b349c29fd22008c4089bd08a

  • SSDEEP

    6144:e/U771TbuciCpDrVoOdwruNfqpKkP2sv/3gh6CMqEfRYM43Tj6QdSkUvd:jIhCpDrVjD9qKU2NhynGj6QdSHvd

Malware Config

Targets

    • Target

      a7e7c55d763359f4b590ea4eec10b800

    • Size

      430KB

    • MD5

      a7e7c55d763359f4b590ea4eec10b800

    • SHA1

      c9c9c25f0f90048face442c607428cfbfdc3798b

    • SHA256

      7ea4937a54c4f1373be662d2a8c3bb4aa34faf25dff90318921bdc5a5853524c

    • SHA512

      71fedc8d1d8961c9e253876f66f434694fe7df200d391af577602a83046bc4698bb174cb93ecc78ef9bb4b75fa19cf15d35d21f4b349c29fd22008c4089bd08a

    • SSDEEP

      6144:e/U771TbuciCpDrVoOdwruNfqpKkP2sv/3gh6CMqEfRYM43Tj6QdSkUvd:jIhCpDrVjD9qKU2NhynGj6QdSHvd

    • Panda Stealer payload

    • PandaStealer

      Panda Stealer is a fork of CollectorProject Stealer written in C++.

    • Shurk

      Shurk is an infostealer, written in C++ which appeared in 2021.

    • Shurk Stealer payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks