General

  • Target

    1899c02f9c3ef02fa3b2b3226f47f35acd3c060b5cfd3bb5898a83ed79ce5ee8

  • Size

    80KB

  • Sample

    240407-xn6xqsca63

  • MD5

    0020a778e36ac71c7aad18ff9abfa916

  • SHA1

    141fec68009546c34aa9de27615080942c1b683e

  • SHA256

    1899c02f9c3ef02fa3b2b3226f47f35acd3c060b5cfd3bb5898a83ed79ce5ee8

  • SHA512

    01b90294bb8a628d34e140ad9e4b4588246c47ae4d780cc5dc6127a78c74cd02c844f89288b34d8ce6b84758ce01c6d947438b4b293652c6dbea5657a24cebd3

  • SSDEEP

    768:JNK2cNW0QbRsWjcd+6yBFLqJ4Z8qx70RM8/O/B2Z9tRQM:pcNjQlsWjcd+xzl7SMQQM

Malware Config

Targets

    • Target

      1899c02f9c3ef02fa3b2b3226f47f35acd3c060b5cfd3bb5898a83ed79ce5ee8

    • Size

      80KB

    • MD5

      0020a778e36ac71c7aad18ff9abfa916

    • SHA1

      141fec68009546c34aa9de27615080942c1b683e

    • SHA256

      1899c02f9c3ef02fa3b2b3226f47f35acd3c060b5cfd3bb5898a83ed79ce5ee8

    • SHA512

      01b90294bb8a628d34e140ad9e4b4588246c47ae4d780cc5dc6127a78c74cd02c844f89288b34d8ce6b84758ce01c6d947438b4b293652c6dbea5657a24cebd3

    • SSDEEP

      768:JNK2cNW0QbRsWjcd+6yBFLqJ4Z8qx70RM8/O/B2Z9tRQM:pcNjQlsWjcd+xzl7SMQQM

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks