General

  • Target

    Browser.exe

  • Size

    106.5MB

  • Sample

    240604-npeefafc44

  • MD5

    ee8072df3227183d995e30c2d629e48a

  • SHA1

    a68a3999c75142178ae2d091689bf3785eff342a

  • SHA256

    784a4d80c202a5baf186cbc99c16fb6bc87af51841bbea14034694290721f341

  • SHA512

    517ef3efedfaf80880419c84133da4d6d285a5264414edbbe59b409a7c53a87737baedcea8edfcf4514e3a0e1bfbe69a707eb9e35085822a4b9eb5989a0a094b

  • SSDEEP

    3145728:l/dukp4gwPvP+4tG5YwUSC++uy65C4H0jpJEQ6:lEJgwPXjtGagCMy2CY0jTEQ

Malware Config

Targets

    • Target

      Browser.exe

    • Size

      106.5MB

    • MD5

      ee8072df3227183d995e30c2d629e48a

    • SHA1

      a68a3999c75142178ae2d091689bf3785eff342a

    • SHA256

      784a4d80c202a5baf186cbc99c16fb6bc87af51841bbea14034694290721f341

    • SHA512

      517ef3efedfaf80880419c84133da4d6d285a5264414edbbe59b409a7c53a87737baedcea8edfcf4514e3a0e1bfbe69a707eb9e35085822a4b9eb5989a0a094b

    • SSDEEP

      3145728:l/dukp4gwPvP+4tG5YwUSC++uy65C4H0jpJEQ6:lEJgwPXjtGagCMy2CY0jTEQ

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks