Resubmissions

General

  • Target

    CANTSTOP.exe

  • Size

    28.3MB

  • Sample

    240524-w3vmksfa48

  • MD5

    ef3f43e50202a09202ef0d57242851a7

  • SHA1

    c063afde0f288ef0e86636f61154987adf3bf4f8

  • SHA256

    d8526fdcfdc8cf198bedf7c8b816dbb20691db6ca3dfb7b12da3b65c274053a6

  • SHA512

    bc64ad583133a2e94b32abe928d09aeeffde2d733a83291c13b1c65111fa2f8d70a290b54272014f05b310f4024e3d31583e99938d44840e3645f6051fc057d4

  • SSDEEP

    786432:draAVWfKp1QtIJ2j6+s7LWB75zuPNua8DZcXzaYEC:ZRWiHiIJ2qHWB75iVf6R

Malware Config

Targets

    • Target

      CANTSTOP.exe

    • Size

      28.3MB

    • MD5

      ef3f43e50202a09202ef0d57242851a7

    • SHA1

      c063afde0f288ef0e86636f61154987adf3bf4f8

    • SHA256

      d8526fdcfdc8cf198bedf7c8b816dbb20691db6ca3dfb7b12da3b65c274053a6

    • SHA512

      bc64ad583133a2e94b32abe928d09aeeffde2d733a83291c13b1c65111fa2f8d70a290b54272014f05b310f4024e3d31583e99938d44840e3645f6051fc057d4

    • SSDEEP

      786432:draAVWfKp1QtIJ2j6+s7LWB75zuPNua8DZcXzaYEC:ZRWiHiIJ2qHWB75iVf6R

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Matrix ATT&CK v13

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Collection

Data from Local System

1
T1005

Tasks