General

  • Target

    84279f82c466b359b146a4116438c3496975003f16d7c40fcd6564ed65ddedf0

  • Size

    17KB

  • Sample

    240612-n5574axerm

  • MD5

    6a1bb1612877d6dfa85b7d8d66c5267f

  • SHA1

    66efc203b3a9fba3eb58dd924a176a12c8883a74

  • SHA256

    84279f82c466b359b146a4116438c3496975003f16d7c40fcd6564ed65ddedf0

  • SHA512

    0ae777f0ba0e00ba74dcdb53caa94aa93f042ef4b13b15392c86c081d4af62577cd526c54db9c0202061e1a361d63897d439f69246e13b07af222a566201199d

  • SSDEEP

    384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/Pw/e:IMAQ+BzWPEwnE+KHM2/Pwm

Malware Config

Targets

    • Target

      84279f82c466b359b146a4116438c3496975003f16d7c40fcd6564ed65ddedf0

    • Size

      17KB

    • MD5

      6a1bb1612877d6dfa85b7d8d66c5267f

    • SHA1

      66efc203b3a9fba3eb58dd924a176a12c8883a74

    • SHA256

      84279f82c466b359b146a4116438c3496975003f16d7c40fcd6564ed65ddedf0

    • SHA512

      0ae777f0ba0e00ba74dcdb53caa94aa93f042ef4b13b15392c86c081d4af62577cd526c54db9c0202061e1a361d63897d439f69246e13b07af222a566201199d

    • SSDEEP

      384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/Pw/e:IMAQ+BzWPEwnE+KHM2/Pwm

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks