General

  • Target

    fb795d8c177e42a55ceace9cd9bded078559a91935db1e6422318f55ed45855f

  • Size

    103KB

  • Sample

    240527-sl3ebahf52

  • MD5

    0647b0b3e441a0143251b77812fa6d4c

  • SHA1

    a4658371acc9b15a5022640ebac24044523d25ed

  • SHA256

    fb795d8c177e42a55ceace9cd9bded078559a91935db1e6422318f55ed45855f

  • SHA512

    6ed819dd8a03e45e083e41d2078fd73264087fe56dbdf3ee73b50fbd4b35f83a5fce4678364527f4e600c4df6d048a29dd179fae4246806c1aa1c37b8ad64d84

  • SSDEEP

    1536:FITncx1aeg1vye1MRSclS1Z023PtHJnkI2yJREnToIf2qp/oyt:FWf9qe1IS8r2/JoTBf2qOyt

Score
7/10

Malware Config

Targets

    • Target

      fb795d8c177e42a55ceace9cd9bded078559a91935db1e6422318f55ed45855f

    • Size

      103KB

    • MD5

      0647b0b3e441a0143251b77812fa6d4c

    • SHA1

      a4658371acc9b15a5022640ebac24044523d25ed

    • SHA256

      fb795d8c177e42a55ceace9cd9bded078559a91935db1e6422318f55ed45855f

    • SHA512

      6ed819dd8a03e45e083e41d2078fd73264087fe56dbdf3ee73b50fbd4b35f83a5fce4678364527f4e600c4df6d048a29dd179fae4246806c1aa1c37b8ad64d84

    • SSDEEP

      1536:FITncx1aeg1vye1MRSclS1Z023PtHJnkI2yJREnToIf2qp/oyt:FWf9qe1IS8r2/JoTBf2qOyt

    Score
    7/10
    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks