General

  • Target

    a38e104c200624a19b65081a223dc06a5536a7d84f90ff04440e6b1ab97a0ac3

  • Size

    3.0MB

  • Sample

    240604-be85vafg2s

  • MD5

    1a680f868f797fba770d84bf85e84ca7

  • SHA1

    90e2d9a96603e59b8182984d379971d6505a772c

  • SHA256

    a38e104c200624a19b65081a223dc06a5536a7d84f90ff04440e6b1ab97a0ac3

  • SHA512

    4ec311c76498a63d45c31df04ef20c4fa7c84332dc406a0c576ebad7700229a5bf684b4a432787e6dce9f10dc037dd56079379c37a4546f55efe08016d20d34d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqz8b6LNX:sxX7QnxrloE5dpUp6bVz8eLF

Malware Config

Targets

    • Target

      a38e104c200624a19b65081a223dc06a5536a7d84f90ff04440e6b1ab97a0ac3

    • Size

      3.0MB

    • MD5

      1a680f868f797fba770d84bf85e84ca7

    • SHA1

      90e2d9a96603e59b8182984d379971d6505a772c

    • SHA256

      a38e104c200624a19b65081a223dc06a5536a7d84f90ff04440e6b1ab97a0ac3

    • SHA512

      4ec311c76498a63d45c31df04ef20c4fa7c84332dc406a0c576ebad7700229a5bf684b4a432787e6dce9f10dc037dd56079379c37a4546f55efe08016d20d34d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqz8b6LNX:sxX7QnxrloE5dpUp6bVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks