General

  • Target

    1c83a5b490ac19ebb651957fc5b20e9d04d40a0b28e86d32ea04b5ec5fa0dbf0

  • Size

    71KB

  • Sample

    240407-xs5kgacb97

  • MD5

    26aa0d601eeea4846e94f26a2c23cae6

  • SHA1

    dedb7b21e96ac90c0e806f3d551803a1ed70c291

  • SHA256

    1c83a5b490ac19ebb651957fc5b20e9d04d40a0b28e86d32ea04b5ec5fa0dbf0

  • SHA512

    794abbb70bb043dcdb8a17c766a7876b8407e1e6d7dd9f3efa4a84a3a40a526bc7cc1da5929c869bd5b0843582c9c4d59d8246075e24f02bdecba1a02cd47d4d

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTk:ZhpAyazIlyazTk

Malware Config

Targets

    • Target

      1c83a5b490ac19ebb651957fc5b20e9d04d40a0b28e86d32ea04b5ec5fa0dbf0

    • Size

      71KB

    • MD5

      26aa0d601eeea4846e94f26a2c23cae6

    • SHA1

      dedb7b21e96ac90c0e806f3d551803a1ed70c291

    • SHA256

      1c83a5b490ac19ebb651957fc5b20e9d04d40a0b28e86d32ea04b5ec5fa0dbf0

    • SHA512

      794abbb70bb043dcdb8a17c766a7876b8407e1e6d7dd9f3efa4a84a3a40a526bc7cc1da5929c869bd5b0843582c9c4d59d8246075e24f02bdecba1a02cd47d4d

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTk:ZhpAyazIlyazTk

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks