General

  • Target

    Browser.exe

  • Size

    106.5MB

  • Sample

    240604-ngpv7seh84

  • MD5

    682f6e9b9be72d9292f0bc6824a05286

  • SHA1

    defe1f40b0061f7126b031db15303a14fcf4aefa

  • SHA256

    7b297fcff7addee3bbe334f59fd8b3603cb96979d8d25ea65cbf82ac2f390a78

  • SHA512

    5c07d6bbf8a96e21de7fe93c58e28790295a65ea73e7087ce279e382e7fffda06564aa3a843779f044e30b8da542bbb64916e3c01b22252022039375ce089246

  • SSDEEP

    3145728:l/dukp4gwPvP+4tG5YwUSC++uy65C4H0jpJEQ6:lEJgwPXjtGagCMy2CY0jTEQ

Malware Config

Targets

    • Target

      Browser.exe

    • Size

      106.5MB

    • MD5

      682f6e9b9be72d9292f0bc6824a05286

    • SHA1

      defe1f40b0061f7126b031db15303a14fcf4aefa

    • SHA256

      7b297fcff7addee3bbe334f59fd8b3603cb96979d8d25ea65cbf82ac2f390a78

    • SHA512

      5c07d6bbf8a96e21de7fe93c58e28790295a65ea73e7087ce279e382e7fffda06564aa3a843779f044e30b8da542bbb64916e3c01b22252022039375ce089246

    • SSDEEP

      3145728:l/dukp4gwPvP+4tG5YwUSC++uy65C4H0jpJEQ6:lEJgwPXjtGagCMy2CY0jTEQ

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks