General

  • Target

    b3ca49fa69322f75fc012749aac8451a3e865e36a30640d4aa2da68ec2f230e0

  • Size

    717KB

  • Sample

    240407-xrebwsbg3w

  • MD5

    0f0658685983e4ccd744937d85cc9f74

  • SHA1

    0d25b82be2ba3d7ced5a5c9232ad6a7e057809e4

  • SHA256

    b3ca49fa69322f75fc012749aac8451a3e865e36a30640d4aa2da68ec2f230e0

  • SHA512

    3dc749932f784123695506edc9112588a0cce97a890f94b59eec8593c8b8259da9008c539da1ba176c768dac780f81307e81e9424bbc56219e88bb176213d62a

  • SSDEEP

    12288:1+arFpfC6Aj+TN5uixZN+8rKhUdTC/wE1ZD0Ca5ZIXV:1BrDLOS2opPIXV

Score
7/10

Malware Config

Targets

    • Target

      b3ca49fa69322f75fc012749aac8451a3e865e36a30640d4aa2da68ec2f230e0

    • Size

      717KB

    • MD5

      0f0658685983e4ccd744937d85cc9f74

    • SHA1

      0d25b82be2ba3d7ced5a5c9232ad6a7e057809e4

    • SHA256

      b3ca49fa69322f75fc012749aac8451a3e865e36a30640d4aa2da68ec2f230e0

    • SHA512

      3dc749932f784123695506edc9112588a0cce97a890f94b59eec8593c8b8259da9008c539da1ba176c768dac780f81307e81e9424bbc56219e88bb176213d62a

    • SSDEEP

      12288:1+arFpfC6Aj+TN5uixZN+8rKhUdTC/wE1ZD0Ca5ZIXV:1BrDLOS2opPIXV

    Score
    7/10
    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks