General

  • Target

    e6067b90bc020489e33e59f43bc8d324cddf3e9e616b3e98e7adf96fced7463a

  • Size

    3.0MB

  • Sample

    240522-ez6r1abh88

  • MD5

    b8999e968dfcc274c9377fdfdc39f100

  • SHA1

    b1af7b320a8d06df94f97eeeade2a2ee57c4fa36

  • SHA256

    e6067b90bc020489e33e59f43bc8d324cddf3e9e616b3e98e7adf96fced7463a

  • SHA512

    9d0221d76483ef0cca491643a67ec221fc633dbbaec29c7683766821d1861d98085dbe5a57608ee9811e3b96d8493997988279d1a77d56c3b228c31603be5213

  • SSDEEP

    49152:cq53mGeUZKPiarPHsf9dGBJEd498CI/MWuV3uA2TuJhwxIlODNGwV5:B53mLU4f6d6x8CI/M7V+AquBOBG

Malware Config

Targets

    • Target

      e6067b90bc020489e33e59f43bc8d324cddf3e9e616b3e98e7adf96fced7463a

    • Size

      3.0MB

    • MD5

      b8999e968dfcc274c9377fdfdc39f100

    • SHA1

      b1af7b320a8d06df94f97eeeade2a2ee57c4fa36

    • SHA256

      e6067b90bc020489e33e59f43bc8d324cddf3e9e616b3e98e7adf96fced7463a

    • SHA512

      9d0221d76483ef0cca491643a67ec221fc633dbbaec29c7683766821d1861d98085dbe5a57608ee9811e3b96d8493997988279d1a77d56c3b228c31603be5213

    • SSDEEP

      49152:cq53mGeUZKPiarPHsf9dGBJEd498CI/MWuV3uA2TuJhwxIlODNGwV5:B53mLU4f6d6x8CI/M7V+AquBOBG

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks