General

  • Target

    ee7141c73e1c9616fde53bb53df719b22c415c3708de7048cb6b9555ca6a0f6c

  • Size

    2.6MB

  • Sample

    240603-fyxclscg8x

  • MD5

    cf6e6c63938e3f880edaebd6ff9b0935

  • SHA1

    dbe914020fd34e52cc98333b8979a6d3cae1efba

  • SHA256

    ee7141c73e1c9616fde53bb53df719b22c415c3708de7048cb6b9555ca6a0f6c

  • SHA512

    496704408bea767ce02cea9afc8008337e8ecfa3d244c564d68b439c0db74741ffb899407ae0e4d2d43fe65470eb23e71c122e0d5b18fd15949f9bc47ad5a9a0

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBmB/bS:sxX7QnxrloE5dpUplb

Malware Config

Targets

    • Target

      ee7141c73e1c9616fde53bb53df719b22c415c3708de7048cb6b9555ca6a0f6c

    • Size

      2.6MB

    • MD5

      cf6e6c63938e3f880edaebd6ff9b0935

    • SHA1

      dbe914020fd34e52cc98333b8979a6d3cae1efba

    • SHA256

      ee7141c73e1c9616fde53bb53df719b22c415c3708de7048cb6b9555ca6a0f6c

    • SHA512

      496704408bea767ce02cea9afc8008337e8ecfa3d244c564d68b439c0db74741ffb899407ae0e4d2d43fe65470eb23e71c122e0d5b18fd15949f9bc47ad5a9a0

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBmB/bS:sxX7QnxrloE5dpUplb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks