General

  • Target

    12a849f76149daecc14e8f00ceb0d40beb98fea18387a4b9e1512fb7837066b2

  • Size

    17KB

  • Sample

    240603-llakzabe72

  • MD5

    a7154b65cdfde85390a60b287ccc5d0e

  • SHA1

    6663e3aabeaa93fa2af8748c4ccdf4b0c248f075

  • SHA256

    12a849f76149daecc14e8f00ceb0d40beb98fea18387a4b9e1512fb7837066b2

  • SHA512

    d2bbde8f754cd4b535e33019ceff80d31c9c9776e1331c5fc91c889bdcb596e11df7ac3759c91a91ee7b88eb99d884451a2868c6170d4ede8470d534e4f41cc3

  • SSDEEP

    384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/cION:IMAQ+BzWPEwnE+KHM2/YN

Malware Config

Targets

    • Target

      12a849f76149daecc14e8f00ceb0d40beb98fea18387a4b9e1512fb7837066b2

    • Size

      17KB

    • MD5

      a7154b65cdfde85390a60b287ccc5d0e

    • SHA1

      6663e3aabeaa93fa2af8748c4ccdf4b0c248f075

    • SHA256

      12a849f76149daecc14e8f00ceb0d40beb98fea18387a4b9e1512fb7837066b2

    • SHA512

      d2bbde8f754cd4b535e33019ceff80d31c9c9776e1331c5fc91c889bdcb596e11df7ac3759c91a91ee7b88eb99d884451a2868c6170d4ede8470d534e4f41cc3

    • SSDEEP

      384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/cION:IMAQ+BzWPEwnE+KHM2/YN

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks