General

  • Target

    22bbe420096ec62f8e226a41aff3c3fde3ba8d9b606e1c351aa67a97e7526f55

  • Size

    214KB

  • Sample

    240407-x2v3dsce37

  • MD5

    b47a154ccb15af203fc9dfac06976ef5

  • SHA1

    c2d348eadd1ba831f648ff28ec68b04fb6110df3

  • SHA256

    22bbe420096ec62f8e226a41aff3c3fde3ba8d9b606e1c351aa67a97e7526f55

  • SHA512

    5136a7a6f30820c68ecc48f932b4d88f403fd3c12c189bb6cdabbb8d3058734e73aaa885c6ffa5c27b93ab54e3197c49bcbd13b62e3f175f417701ae89f0cbb6

  • SSDEEP

    3072:ZhpAyazIlyazTawA77ijXYWbQ3Elp23oJMItlw3448BiO4yIyq:hZMazWp7KoWbQ3i4SM+E4rAByq

Malware Config

Targets

    • Target

      22bbe420096ec62f8e226a41aff3c3fde3ba8d9b606e1c351aa67a97e7526f55

    • Size

      214KB

    • MD5

      b47a154ccb15af203fc9dfac06976ef5

    • SHA1

      c2d348eadd1ba831f648ff28ec68b04fb6110df3

    • SHA256

      22bbe420096ec62f8e226a41aff3c3fde3ba8d9b606e1c351aa67a97e7526f55

    • SHA512

      5136a7a6f30820c68ecc48f932b4d88f403fd3c12c189bb6cdabbb8d3058734e73aaa885c6ffa5c27b93ab54e3197c49bcbd13b62e3f175f417701ae89f0cbb6

    • SSDEEP

      3072:ZhpAyazIlyazTawA77ijXYWbQ3Elp23oJMItlw3448BiO4yIyq:hZMazWp7KoWbQ3i4SM+E4rAByq

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks