General

  • Target

    6d8d85a16dc01a91f68725621852a120.bin

  • Size

    3.9MB

  • Sample

    240604-cb8wcaaa88

  • MD5

    6d8d85a16dc01a91f68725621852a120

  • SHA1

    6732c208d629c47ab80d5b9ccf456964ec58cd52

  • SHA256

    666d454aeabe7404f59f138b23a7522d213337aba772f6f1a47c8bb0ae4e821a

  • SHA512

    16bda29040c803f4df7ef537cd602befe88e4ba45d202e19443b36989396550bea3fcbd7812a263abbb9551d75e8766c20d3b898880e73c4c63d2b2857d0f185

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bSqz8:sxX7QnxrloE5dpUp2bVz8

Malware Config

Targets

    • Target

      6d8d85a16dc01a91f68725621852a120.bin

    • Size

      3.9MB

    • MD5

      6d8d85a16dc01a91f68725621852a120

    • SHA1

      6732c208d629c47ab80d5b9ccf456964ec58cd52

    • SHA256

      666d454aeabe7404f59f138b23a7522d213337aba772f6f1a47c8bb0ae4e821a

    • SHA512

      16bda29040c803f4df7ef537cd602befe88e4ba45d202e19443b36989396550bea3fcbd7812a263abbb9551d75e8766c20d3b898880e73c4c63d2b2857d0f185

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bSqz8:sxX7QnxrloE5dpUp2bVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks