General

  • Target

    64eef8a6514c48151df35eaa9d234ea80e5c12935f20a540674a278f7d44ed92

  • Size

    17KB

  • Sample

    240601-g84p4sdd84

  • MD5

    3dc0979b0435aeeb3df333567a6208cb

  • SHA1

    41d65af0c95646592fd532ceb362674d5320471e

  • SHA256

    64eef8a6514c48151df35eaa9d234ea80e5c12935f20a540674a278f7d44ed92

  • SHA512

    23ee251579b44fdc44cf19be4c57369dece483ca72d9e1c6e2dfd0ce792240fbf78343f66e9bfeeb2c0ea377aec6870d906ca32b74a78ef6e5796a228a93e6fe

  • SSDEEP

    384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/YJI4x:IMAQ+BzWPEwnE+KHM2/st

Malware Config

Targets

    • Target

      64eef8a6514c48151df35eaa9d234ea80e5c12935f20a540674a278f7d44ed92

    • Size

      17KB

    • MD5

      3dc0979b0435aeeb3df333567a6208cb

    • SHA1

      41d65af0c95646592fd532ceb362674d5320471e

    • SHA256

      64eef8a6514c48151df35eaa9d234ea80e5c12935f20a540674a278f7d44ed92

    • SHA512

      23ee251579b44fdc44cf19be4c57369dece483ca72d9e1c6e2dfd0ce792240fbf78343f66e9bfeeb2c0ea377aec6870d906ca32b74a78ef6e5796a228a93e6fe

    • SSDEEP

      384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/YJI4x:IMAQ+BzWPEwnE+KHM2/st

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks