General

  • Target

    ae8143b2aa42661de7e143e7cd79668f9d8695e0ac28a6e152512df4437661ec

  • Size

    491KB

  • Sample

    240515-nfl3xseh5y

  • MD5

    3faf165729756aa5beb866f2fe513b57

  • SHA1

    1ba03d9d130eeaf30d869c0e030d0dafeda98a3f

  • SHA256

    ae8143b2aa42661de7e143e7cd79668f9d8695e0ac28a6e152512df4437661ec

  • SHA512

    ca9369bb2cd49f1a5eeff59d23631d3bc5501e34de598ff555531d7c3edd582e27dcd48c58f409498f7b470c06de52805a50fd807439e72185808e716eae85e5

  • SSDEEP

    12288:p+arF11gL5pRTcAkS/3hzN8qE43fm78V:pBrK5jcAkSYqyE

Score
7/10

Malware Config

Targets

    • Target

      ae8143b2aa42661de7e143e7cd79668f9d8695e0ac28a6e152512df4437661ec

    • Size

      491KB

    • MD5

      3faf165729756aa5beb866f2fe513b57

    • SHA1

      1ba03d9d130eeaf30d869c0e030d0dafeda98a3f

    • SHA256

      ae8143b2aa42661de7e143e7cd79668f9d8695e0ac28a6e152512df4437661ec

    • SHA512

      ca9369bb2cd49f1a5eeff59d23631d3bc5501e34de598ff555531d7c3edd582e27dcd48c58f409498f7b470c06de52805a50fd807439e72185808e716eae85e5

    • SSDEEP

      12288:p+arF11gL5pRTcAkS/3hzN8qE43fm78V:pBrK5jcAkSYqyE

    Score
    7/10
    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks