General

  • Target

    dbfbbea84b0da045752e33d6ce9a1bced8c08da67b3a652329011a84ee854aad

  • Size

    3.9MB

  • Sample

    240526-ea3n2sdf8x

  • MD5

    0e7f932db4e4ea318eb0d752595f512a

  • SHA1

    2ceca466f0b2e59b56f7f78c85e38274d2bf4823

  • SHA256

    dbfbbea84b0da045752e33d6ce9a1bced8c08da67b3a652329011a84ee854aad

  • SHA512

    8be00b31e293db13c4be9ded828ea246b88b304892603c8d2b4db2474c464c488b6b5e431c1ced98140d602a2bbae0ff236ca92572f28a8b3dcd3388c6bac84e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSqz8:sxX7QnxrloE5dpUpRbVz8

Malware Config

Targets

    • Target

      dbfbbea84b0da045752e33d6ce9a1bced8c08da67b3a652329011a84ee854aad

    • Size

      3.9MB

    • MD5

      0e7f932db4e4ea318eb0d752595f512a

    • SHA1

      2ceca466f0b2e59b56f7f78c85e38274d2bf4823

    • SHA256

      dbfbbea84b0da045752e33d6ce9a1bced8c08da67b3a652329011a84ee854aad

    • SHA512

      8be00b31e293db13c4be9ded828ea246b88b304892603c8d2b4db2474c464c488b6b5e431c1ced98140d602a2bbae0ff236ca92572f28a8b3dcd3388c6bac84e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSqz8:sxX7QnxrloE5dpUpRbVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks