General

  • Target

    fc364d4618d91a492e6d40c325c9cd582229af6b7c0c22da778bb9fd783f9a61

  • Size

    4.0MB

  • Sample

    240603-gh8ldadg21

  • MD5

    5ec42c2ddcb2f4133a859a2d38febb25

  • SHA1

    7080618b5a4464e0b8a338d833d8e85e743c6f60

  • SHA256

    fc364d4618d91a492e6d40c325c9cd582229af6b7c0c22da778bb9fd783f9a61

  • SHA512

    b6b399de161f47e5f0ddad1782985fd383aedbc2cc9ae3bd2a590b1f5c4476a14d186571acea0da9e63fee515d1b91cb43f9cc42b392cdef061a79fef76eb5d3

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpRbVz8eLFcz

Malware Config

Targets

    • Target

      fc364d4618d91a492e6d40c325c9cd582229af6b7c0c22da778bb9fd783f9a61

    • Size

      4.0MB

    • MD5

      5ec42c2ddcb2f4133a859a2d38febb25

    • SHA1

      7080618b5a4464e0b8a338d833d8e85e743c6f60

    • SHA256

      fc364d4618d91a492e6d40c325c9cd582229af6b7c0c22da778bb9fd783f9a61

    • SHA512

      b6b399de161f47e5f0ddad1782985fd383aedbc2cc9ae3bd2a590b1f5c4476a14d186571acea0da9e63fee515d1b91cb43f9cc42b392cdef061a79fef76eb5d3

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpRbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks