General

  • Target

    e419a8158c6fe326dc7ab16dbd5f3b2723dffe8c9561fe835bb16f62a8fa61f5

  • Size

    8.5MB

  • Sample

    240508-v6h8aafc8z

  • MD5

    641932b66490630005dde2aef405e5e9

  • SHA1

    9bad63eab92144b8a365428aa68531c80fc2da0f

  • SHA256

    e419a8158c6fe326dc7ab16dbd5f3b2723dffe8c9561fe835bb16f62a8fa61f5

  • SHA512

    ac1728d330f26ff8862031958d3324406f582bd38bb04673e81fe2131ab87c0857cc634bbf30c19e0f1e44e56998019a2a9833fe4614fa2998c133313d721602

  • SSDEEP

    196608:Rx7GRjBXeIXf5E9onJ5hrZERdyiU8AdZYJERMEzsDyrT1EDo:PuBnv5E9c5hlERhAdZYy+0tra

Malware Config

Targets

    • Target

      e419a8158c6fe326dc7ab16dbd5f3b2723dffe8c9561fe835bb16f62a8fa61f5

    • Size

      8.5MB

    • MD5

      641932b66490630005dde2aef405e5e9

    • SHA1

      9bad63eab92144b8a365428aa68531c80fc2da0f

    • SHA256

      e419a8158c6fe326dc7ab16dbd5f3b2723dffe8c9561fe835bb16f62a8fa61f5

    • SHA512

      ac1728d330f26ff8862031958d3324406f582bd38bb04673e81fe2131ab87c0857cc634bbf30c19e0f1e44e56998019a2a9833fe4614fa2998c133313d721602

    • SSDEEP

      196608:Rx7GRjBXeIXf5E9onJ5hrZERdyiU8AdZYJERMEzsDyrT1EDo:PuBnv5E9c5hlERhAdZYy+0tra

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks