General

  • Target

    5591a9fa585535638d04783fe1d33206a3c5f2f01fe5008315e5f92096054dff

  • Size

    5.7MB

  • Sample

    240527-r94fvagb3s

  • MD5

    9801aeac198b42944dff1f476de6e746

  • SHA1

    378e7e7918e4deaf286a550120d31fb8e44dfa92

  • SHA256

    5591a9fa585535638d04783fe1d33206a3c5f2f01fe5008315e5f92096054dff

  • SHA512

    12ce5b322088f7ec63f5ff8798db0840dcaf7b7e0b5e3f32ac7385fae44d17f594d45f6bf33866ee4aa00a3374f412242cc6e16de9939da2d2f7ff2490fc7370

  • SSDEEP

    49152:iPv94AEsKU8ggw1g+1CART5eBiyKS3EI3wybn20DCYIHvc8ixuZm9+fWsw6dTPBJ:0KUgTH2M2m9UMpu1QfLczqssnKSk

Score
7/10

Malware Config

Targets

    • Target

      5591a9fa585535638d04783fe1d33206a3c5f2f01fe5008315e5f92096054dff

    • Size

      5.7MB

    • MD5

      9801aeac198b42944dff1f476de6e746

    • SHA1

      378e7e7918e4deaf286a550120d31fb8e44dfa92

    • SHA256

      5591a9fa585535638d04783fe1d33206a3c5f2f01fe5008315e5f92096054dff

    • SHA512

      12ce5b322088f7ec63f5ff8798db0840dcaf7b7e0b5e3f32ac7385fae44d17f594d45f6bf33866ee4aa00a3374f412242cc6e16de9939da2d2f7ff2490fc7370

    • SSDEEP

      49152:iPv94AEsKU8ggw1g+1CART5eBiyKS3EI3wybn20DCYIHvc8ixuZm9+fWsw6dTPBJ:0KUgTH2M2m9UMpu1QfLczqssnKSk

    Score
    7/10
    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks