General

  • Target

    ce6224c2c1f6cfa9e60740d98cfbc882da6d6885ece9c4c8bd320370496830e2.exe

  • Size

    835KB

  • Sample

    240606-cbrxtsfb72

  • MD5

    7c59c815b6a09a1e430d5ec2c39f2829

  • SHA1

    8ad36761ce46a6fd7bf274acab188108beca7dc3

  • SHA256

    ce6224c2c1f6cfa9e60740d98cfbc882da6d6885ece9c4c8bd320370496830e2

  • SHA512

    321848a2b73e0702b8e5a93a183998b09ae7ae9f198f5bc49d5e8a3215e63f316a92f10dc61f6fa3e05929b01ae54860de3dc9fb6c00a25745e182acd3d558e7

  • SSDEEP

    24576:mXNi9mRHYPHSBobJGuvMlCeYJIWT3FuyFDtoydI:mXTRHEMwJGuuYJPFk5

Malware Config

Targets

    • Target

      ce6224c2c1f6cfa9e60740d98cfbc882da6d6885ece9c4c8bd320370496830e2.exe

    • Size

      835KB

    • MD5

      7c59c815b6a09a1e430d5ec2c39f2829

    • SHA1

      8ad36761ce46a6fd7bf274acab188108beca7dc3

    • SHA256

      ce6224c2c1f6cfa9e60740d98cfbc882da6d6885ece9c4c8bd320370496830e2

    • SHA512

      321848a2b73e0702b8e5a93a183998b09ae7ae9f198f5bc49d5e8a3215e63f316a92f10dc61f6fa3e05929b01ae54860de3dc9fb6c00a25745e182acd3d558e7

    • SSDEEP

      24576:mXNi9mRHYPHSBobJGuvMlCeYJIWT3FuyFDtoydI:mXTRHEMwJGuuYJPFk5

    • Reads WinSCP keys stored on the system

      Tries to access WinSCP stored sessions.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses Microsoft Outlook profiles

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks