General

  • Target

    c1667c76b9835e9ed50cb723a177c596.bin

  • Size

    20KB

  • Sample

    240612-da1c9azald

  • MD5

    e3a6cc51f694977b989579f79efcfe3d

  • SHA1

    d601e2578e513a35f3751d7937ab1048a02649ab

  • SHA256

    80640355e42dbb89229f8efdc611f2718314c14e1dd10212fe997f53c3c9f41e

  • SHA512

    20218e489ff0b1d0f967bf6eb0e3de70a44662b17e7159e6977f65f33171510efbc40ecf8b884a715ace042566b21c7dedc1b64d15ec065dcb0a4667923810c2

  • SSDEEP

    384:zCy5pi/+Bk2iGch49AMKpqDjacSG/iakA2MbqiawR9ExCkV0aKz:zRq+62iGcOxKUxn8MOixLSeaKz

Malware Config

Targets

    • Target

      a9fef3bf43ae17b1ea2361ea59c5584caf762bd450dc8f120fdbf7f9fe523e96.exe

    • Size

      59KB

    • MD5

      c1667c76b9835e9ed50cb723a177c596

    • SHA1

      505d31c1543fe7f03da5c536d31d5bf6873a8f5a

    • SHA256

      a9fef3bf43ae17b1ea2361ea59c5584caf762bd450dc8f120fdbf7f9fe523e96

    • SHA512

      dfd1b989ed0c6b02cbef586a15cbd0ce13f1e28c44c5135f8e48b2e631f39b03d967c0860e5b33204d56ff4194571e80ed647a33422d5d60b60c10d79c9ee6a1

    • SSDEEP

      1536:jBZB6BqMlDnzYIBq/BHByABByZ+rhihUqq1YjVG0qzrg0:jBZB6BqMlDzYIBq/BHByABAZqwZqSk

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses Microsoft Outlook profiles

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks