General

  • Target

    310828d6af99df2a70b0cc8e6c37a202831c6f9c5e3f725287ead6a276e25720

  • Size

    71KB

  • Sample

    240407-ymazcadc77

  • MD5

    81178ce260c009bbc60c527d6981b036

  • SHA1

    b5f2bc7360030097bd662d682e434df6f5915961

  • SHA256

    310828d6af99df2a70b0cc8e6c37a202831c6f9c5e3f725287ead6a276e25720

  • SHA512

    a5298c0a07eb1fc12d90863be6fb839da68b96670d99b6a7eeb1eee87fabc664f659d2c289754566db1c92ee2260cee693ae7263218a63e0242688fb8d01c745

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTe:ZhpAyazIlyazTe

Malware Config

Targets

    • Target

      310828d6af99df2a70b0cc8e6c37a202831c6f9c5e3f725287ead6a276e25720

    • Size

      71KB

    • MD5

      81178ce260c009bbc60c527d6981b036

    • SHA1

      b5f2bc7360030097bd662d682e434df6f5915961

    • SHA256

      310828d6af99df2a70b0cc8e6c37a202831c6f9c5e3f725287ead6a276e25720

    • SHA512

      a5298c0a07eb1fc12d90863be6fb839da68b96670d99b6a7eeb1eee87fabc664f659d2c289754566db1c92ee2260cee693ae7263218a63e0242688fb8d01c745

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTe:ZhpAyazIlyazTe

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks