General

  • Target

    f1fad3f4264c78e3db4b568f32a5ac12fd0baef6e1c0eff082382d4acf582642

  • Size

    17KB

  • Sample

    240530-3grgcsfb27

  • MD5

    0f8b2fa44a2d0833bfdbc9b7f1d69f53

  • SHA1

    4098423ab5d046fb3d0609f81fb96c52622e49bf

  • SHA256

    f1fad3f4264c78e3db4b568f32a5ac12fd0baef6e1c0eff082382d4acf582642

  • SHA512

    bfdfed594d6341e81da36f699f6b189b10d96e514be0c50e2fbfe9a5115f7274d9172be3f6d0979828c80cffc718e3f19ba33951420b08d171ac43b53c9a2381

  • SSDEEP

    384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/Zq:IMAQ+BzWPEwnE+KHM2/0

Malware Config

Targets

    • Target

      f1fad3f4264c78e3db4b568f32a5ac12fd0baef6e1c0eff082382d4acf582642

    • Size

      17KB

    • MD5

      0f8b2fa44a2d0833bfdbc9b7f1d69f53

    • SHA1

      4098423ab5d046fb3d0609f81fb96c52622e49bf

    • SHA256

      f1fad3f4264c78e3db4b568f32a5ac12fd0baef6e1c0eff082382d4acf582642

    • SHA512

      bfdfed594d6341e81da36f699f6b189b10d96e514be0c50e2fbfe9a5115f7274d9172be3f6d0979828c80cffc718e3f19ba33951420b08d171ac43b53c9a2381

    • SSDEEP

      384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/Zq:IMAQ+BzWPEwnE+KHM2/0

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks