General

  • Target

    921c561419f63cbd57370c02a88185e0325930344f1b42f125a5706014f0a60d

  • Size

    3.6MB

  • Sample

    240604-akl2tsfb74

  • MD5

    946e96ca62b871e3e14e970df293a6d1

  • SHA1

    677c41095bb811335f9c32d2817b9f3939ee37ea

  • SHA256

    921c561419f63cbd57370c02a88185e0325930344f1b42f125a5706014f0a60d

  • SHA512

    3a1fcb107c961178251074d3eaaf65ff0b7b809b0ed012bca9b8c28e56aa166c3d258b8b613ef9a871fa83c4edd0f0012a71771e88ff4fea971e7726d3f95f03

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpZbVz8eLFcz

Malware Config

Targets

    • Target

      921c561419f63cbd57370c02a88185e0325930344f1b42f125a5706014f0a60d

    • Size

      3.6MB

    • MD5

      946e96ca62b871e3e14e970df293a6d1

    • SHA1

      677c41095bb811335f9c32d2817b9f3939ee37ea

    • SHA256

      921c561419f63cbd57370c02a88185e0325930344f1b42f125a5706014f0a60d

    • SHA512

      3a1fcb107c961178251074d3eaaf65ff0b7b809b0ed012bca9b8c28e56aa166c3d258b8b613ef9a871fa83c4edd0f0012a71771e88ff4fea971e7726d3f95f03

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpZbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks