General

  • Target

    ecd82a8c3d3faa304441f53a7d1741c33a86bc4d66e90576e507b2c1c26cdb18

  • Size

    3.1MB

  • Sample

    240603-fwsawadh67

  • MD5

    16e380aed296970ceedf52b16492563a

  • SHA1

    842516ea928962b48eb319056c666fbd8cc9fefb

  • SHA256

    ecd82a8c3d3faa304441f53a7d1741c33a86bc4d66e90576e507b2c1c26cdb18

  • SHA512

    3d70a78c0ca6679f5026418b16fe4357562799f79353d11477371577ea8d8edc44490610b3c0c28b522766d57a6278bff6eb0fdfca6be344971bb62d84d5b4df

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bSqz8:sxX7QnxrloE5dpUpFbVz8

Malware Config

Targets

    • Target

      ecd82a8c3d3faa304441f53a7d1741c33a86bc4d66e90576e507b2c1c26cdb18

    • Size

      3.1MB

    • MD5

      16e380aed296970ceedf52b16492563a

    • SHA1

      842516ea928962b48eb319056c666fbd8cc9fefb

    • SHA256

      ecd82a8c3d3faa304441f53a7d1741c33a86bc4d66e90576e507b2c1c26cdb18

    • SHA512

      3d70a78c0ca6679f5026418b16fe4357562799f79353d11477371577ea8d8edc44490610b3c0c28b522766d57a6278bff6eb0fdfca6be344971bb62d84d5b4df

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bSqz8:sxX7QnxrloE5dpUpFbVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks