General

  • Target

    2396410e36864797e34181b94fba161f106f27a5128dc648d8564cf6c5834693

  • Size

    213KB

  • Sample

    240407-x38pwacb4x

  • MD5

    9ad79306a03519180ea892724d2dd16f

  • SHA1

    6796558c7b6f94a2416634239f60114097977b49

  • SHA256

    2396410e36864797e34181b94fba161f106f27a5128dc648d8564cf6c5834693

  • SHA512

    ac7b2e45aa3ffefeb55375466419ff08cac947f6290ae67bdc5058e6853be46eb91f547243106cfaaa6d49898dbd134c4d935981ab7c3d346a77fc005eaa9971

  • SSDEEP

    6144:ztvBPnU1b7e9SQii1EkoNlhlrQ2ZrM2xh:Zv1nWdQP1EDhZPxh

Malware Config

Targets

    • Target

      2396410e36864797e34181b94fba161f106f27a5128dc648d8564cf6c5834693

    • Size

      213KB

    • MD5

      9ad79306a03519180ea892724d2dd16f

    • SHA1

      6796558c7b6f94a2416634239f60114097977b49

    • SHA256

      2396410e36864797e34181b94fba161f106f27a5128dc648d8564cf6c5834693

    • SHA512

      ac7b2e45aa3ffefeb55375466419ff08cac947f6290ae67bdc5058e6853be46eb91f547243106cfaaa6d49898dbd134c4d935981ab7c3d346a77fc005eaa9971

    • SSDEEP

      6144:ztvBPnU1b7e9SQii1EkoNlhlrQ2ZrM2xh:Zv1nWdQP1EDhZPxh

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks