General

  • Target

    3f324d88af50a3658803c5bab5c851ee0593c285914d4bbc63699794ecdc13ee

  • Size

    3.2MB

  • Sample

    240608-1vh12ahf88

  • MD5

    c0a5f8910542762a74c3a1d574ff3e20

  • SHA1

    28abc6cec7b311f8672e1feee7a31605a575bba6

  • SHA256

    3f324d88af50a3658803c5bab5c851ee0593c285914d4bbc63699794ecdc13ee

  • SHA512

    9105188a0d393f1d2382e2631d505e6871605e2a2ed53975c867c97cd47c57a91b99b4c2f470dde15484955b08179620a5fc2f1af245e0799b0cf506a9053932

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBIB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpHbVz8eLFcz

Malware Config

Targets

    • Target

      3f324d88af50a3658803c5bab5c851ee0593c285914d4bbc63699794ecdc13ee

    • Size

      3.2MB

    • MD5

      c0a5f8910542762a74c3a1d574ff3e20

    • SHA1

      28abc6cec7b311f8672e1feee7a31605a575bba6

    • SHA256

      3f324d88af50a3658803c5bab5c851ee0593c285914d4bbc63699794ecdc13ee

    • SHA512

      9105188a0d393f1d2382e2631d505e6871605e2a2ed53975c867c97cd47c57a91b99b4c2f470dde15484955b08179620a5fc2f1af245e0799b0cf506a9053932

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBIB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpHbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks