Resubmissions

16-05-2024 18:31

240516-w53e7sab46 7

General

  • Target

    pretty.zip

  • Size

    39.3MB

  • Sample

    240516-w53e7sab46

  • MD5

    96e3eed1ec29807cf90876b72509ff72

  • SHA1

    05b59db51e497fbc1c23c77efc4251b62bec052a

  • SHA256

    37ea69ea4446af87c17d38458037314ac5e27997c649bf0ac8e002a5bf3ff039

  • SHA512

    e06b122267e9ac452284449c8b93484ba4e4b6012fee2ab75960d6ae5caa5da112c89671fe318694388cba18cb353f38f502b6db609b36eb731330308e16e523

  • SSDEEP

    786432:V8B8BOsXWs+lBSnONxxXOnfyrAe7xA/DUdRI+/H4ZShgJRO/WZ+ZjDHxW9C:uBIhglw21Ons7xACJgcqGqcjDRW9C

Malware Config

Targets

    • Target

      pretty.exe

    • Size

      39.6MB

    • MD5

      18f269cbbed53b2b19d78574eaabc02d

    • SHA1

      1c19298aba1e7196c6542057fc9d86f8f7542782

    • SHA256

      e0270b8b2b9d42b620614c5c5311f3563f7f2d29091c2eff7b580c13c0690ee6

    • SHA512

      1a489b4e38d0baa7d24afe8b834d9dba3e1a5c3ebde6fe8dbdd6a57860b4d9d77525c053a9aadf3c3bf3af21889b9e1f1779a4f7daa9de7a355c276f98a8c4de

    • SSDEEP

      786432:3l0Qj5b0Gpc9dY5DhMLEdE35iWXUR4oyJv7ILp1qeBG+2Z0cZntHa:qQj5bbIexCLKo6R4Xv8VkV+2VZntH

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks