General

  • Target

    430b92f7d6f91a7ecc9183c6a714efb03644781c8617b74d6d860b3a08c9d617

  • Size

    2.7MB

  • Sample

    240612-n698faxfln

  • MD5

    d2494a06bc081db42089db8623458fe4

  • SHA1

    d6ab09e65953e37530510dc6f5caa6202e9e2a2d

  • SHA256

    430b92f7d6f91a7ecc9183c6a714efb03644781c8617b74d6d860b3a08c9d617

  • SHA512

    92c63b7a41a73a673d5f50ce290b56b5813e35c43792341294da29466ba04d766f08836e80b416530afc83883caaa2b79b3af99c6d193257eca4c0a37c8283d4

  • SSDEEP

    49152:36KN3J3DrBW/NTy0ljNLHbW0e6v2D5NTtSbXUuE11eJC53B3AQ7iRrxdS8iyEuXE:3ZZJnBW/ZjNL7pe6v2D5NTS3E1vHwQu8

Score
8/10

Malware Config

Targets

    • Target

      430b92f7d6f91a7ecc9183c6a714efb03644781c8617b74d6d860b3a08c9d617

    • Size

      2.7MB

    • MD5

      d2494a06bc081db42089db8623458fe4

    • SHA1

      d6ab09e65953e37530510dc6f5caa6202e9e2a2d

    • SHA256

      430b92f7d6f91a7ecc9183c6a714efb03644781c8617b74d6d860b3a08c9d617

    • SHA512

      92c63b7a41a73a673d5f50ce290b56b5813e35c43792341294da29466ba04d766f08836e80b416530afc83883caaa2b79b3af99c6d193257eca4c0a37c8283d4

    • SSDEEP

      49152:36KN3J3DrBW/NTy0ljNLHbW0e6v2D5NTtSbXUuE11eJC53B3AQ7iRrxdS8iyEuXE:3ZZJnBW/ZjNL7pe6v2D5NTS3E1vHwQu8

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks