General

  • Target

    5e0c95260c4c4ab11672e950d4a74f173e8a5f66cb5822437c0d0fe29430a30b

  • Size

    82KB

  • Sample

    240407-ypys7add64

  • MD5

    3d9e59602e062a031df6c503c52d90a7

  • SHA1

    3682fb2487951fa338ffd096f994e905fbc9c6eb

  • SHA256

    5e0c95260c4c4ab11672e950d4a74f173e8a5f66cb5822437c0d0fe29430a30b

  • SHA512

    dce83c814998714131a047e7d0dbb0d73c94c82535ed4429895489febbc74dc9435e2fbe0c497b60c0208abd92d232ad8c3ea0eefaa879c51c665419d2a19022

  • SSDEEP

    1536:PVaYzMXqtGNttyUn01Q78a4Re2zHxvuS6YGJYjilZrPMC5V:PVaY46tGNttyJQ7KRv6Y0ZIC5V

Score
8/10

Malware Config

Targets

    • Target

      5e0c95260c4c4ab11672e950d4a74f173e8a5f66cb5822437c0d0fe29430a30b

    • Size

      82KB

    • MD5

      3d9e59602e062a031df6c503c52d90a7

    • SHA1

      3682fb2487951fa338ffd096f994e905fbc9c6eb

    • SHA256

      5e0c95260c4c4ab11672e950d4a74f173e8a5f66cb5822437c0d0fe29430a30b

    • SHA512

      dce83c814998714131a047e7d0dbb0d73c94c82535ed4429895489febbc74dc9435e2fbe0c497b60c0208abd92d232ad8c3ea0eefaa879c51c665419d2a19022

    • SSDEEP

      1536:PVaYzMXqtGNttyUn01Q78a4Re2zHxvuS6YGJYjilZrPMC5V:PVaY46tGNttyJQ7KRv6Y0ZIC5V

    Score
    8/10
    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks