General

  • Target

    9f158aceb284aee62542734a202e350abf2664f24156967c1e67663c2b714a11

  • Size

    3.9MB

  • Sample

    240604-a7zw7sgb73

  • MD5

    5960c9baf8b550d272ffb4560d83213b

  • SHA1

    927608f67a071cb85586d5693c7e4f84532794aa

  • SHA256

    9f158aceb284aee62542734a202e350abf2664f24156967c1e67663c2b714a11

  • SHA512

    a647936bf55c7c7116d6deffcf5ce0ba8ee89fdb57e5ea85456b95d915ead7419dd4356d7d1a3f26deceeae13ee97ae2bd0dbf51766cae1ab0271eab2ec190a2

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBQB/bSqz8:sxX7QnxrloE5dpUpPbVz8

Malware Config

Targets

    • Target

      9f158aceb284aee62542734a202e350abf2664f24156967c1e67663c2b714a11

    • Size

      3.9MB

    • MD5

      5960c9baf8b550d272ffb4560d83213b

    • SHA1

      927608f67a071cb85586d5693c7e4f84532794aa

    • SHA256

      9f158aceb284aee62542734a202e350abf2664f24156967c1e67663c2b714a11

    • SHA512

      a647936bf55c7c7116d6deffcf5ce0ba8ee89fdb57e5ea85456b95d915ead7419dd4356d7d1a3f26deceeae13ee97ae2bd0dbf51766cae1ab0271eab2ec190a2

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBQB/bSqz8:sxX7QnxrloE5dpUpPbVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks