General

  • Target

    4ee84419fb9267081480954f1be176095a45fe299078dfa95f980e513b46a020

  • Size

    4.9MB

  • Sample

    240410-mzn6ysgb7y

  • MD5

    3640ff45519f1acc1505348010626b6d

  • SHA1

    d5b85fddbf7c893e50560da787d7bc0dcef658e9

  • SHA256

    4ee84419fb9267081480954f1be176095a45fe299078dfa95f980e513b46a020

  • SHA512

    6b407e7bfd9bdc7b4ab99b25ff810e547e38e29441b9e9fc224450d71a352789683b7096747daa98c114b65153c80fa857c538461a951432d9c20392b2c18486

  • SSDEEP

    98304:D2X7i8AE3yWw+0wHhuEpvzmA9CQn4RNUBo003+RVIajg5I85CQJ:Y35yA9C/t0E+RKXI8P

Malware Config

Targets

    • Target

      4ee84419fb9267081480954f1be176095a45fe299078dfa95f980e513b46a020

    • Size

      4.9MB

    • MD5

      3640ff45519f1acc1505348010626b6d

    • SHA1

      d5b85fddbf7c893e50560da787d7bc0dcef658e9

    • SHA256

      4ee84419fb9267081480954f1be176095a45fe299078dfa95f980e513b46a020

    • SHA512

      6b407e7bfd9bdc7b4ab99b25ff810e547e38e29441b9e9fc224450d71a352789683b7096747daa98c114b65153c80fa857c538461a951432d9c20392b2c18486

    • SSDEEP

      98304:D2X7i8AE3yWw+0wHhuEpvzmA9CQn4RNUBo003+RVIajg5I85CQJ:Y35yA9C/t0E+RKXI8P

    • OutSteel

      OutSteel is a file uploader and document stealer written in AutoIT.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks