General

  • Target

    ConsoleApplication2.exe

  • Size

    4.4MB

  • Sample

    240608-s3d32sch9x

  • MD5

    5bb3ce4d98455db9b26b3656ce8cd9d4

  • SHA1

    f5c79c2c64f68c917c5a28366046dec5bf80fd51

  • SHA256

    f0e16c83be9d6462dd5b012e24d28d2e6fab090d89a706c26002125ff4a32d51

  • SHA512

    68a0fda3222147c11f498f4304575407988c18544b3c9e5505516795f1d12499cea769b32116b047f0cac9039c497bf9d85247cb80446cbd33f2ca74d3cc5bbe

  • SSDEEP

    49152:A9vbVK2ZCrRVnNPMCzTGN3+ENECHh93VDxuk0hU94vms0gHxlPZKDPqPSz8W5lK8:A9vbVK2ZCHOKCHgLPbPKl

Malware Config

Targets

    • Target

      ConsoleApplication2.exe

    • Size

      4.4MB

    • MD5

      5bb3ce4d98455db9b26b3656ce8cd9d4

    • SHA1

      f5c79c2c64f68c917c5a28366046dec5bf80fd51

    • SHA256

      f0e16c83be9d6462dd5b012e24d28d2e6fab090d89a706c26002125ff4a32d51

    • SHA512

      68a0fda3222147c11f498f4304575407988c18544b3c9e5505516795f1d12499cea769b32116b047f0cac9039c497bf9d85247cb80446cbd33f2ca74d3cc5bbe

    • SSDEEP

      49152:A9vbVK2ZCrRVnNPMCzTGN3+ENECHh93VDxuk0hU94vms0gHxlPZKDPqPSz8W5lK8:A9vbVK2ZCHOKCHgLPbPKl

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks