General

  • Target

    1.7z

  • Size

    438KB

  • Sample

    240612-n6cl6stfnb

  • MD5

    9299ca277057bd8e3132faa0bc9fd9f0

  • SHA1

    e6fa71022e60106c24dd6d74dc5bc45c476fd169

  • SHA256

    14f0878aca39fe4b65fbfad1579d8034f9c438aa270cd5cb61fb94dcf1f466d6

  • SHA512

    3e9528152861525bf7b69da030db0fee30b3dbe534965c5f8c3c556619963f69c30fe3722741a0b48d2bff429753fe96a73b8292c2ed1b91964569798ea6366c

  • SSDEEP

    12288:+haC0KScHw1+NaUTgRQcAL7cyc0D43QKGfrFfg:C0+Hy+NpyEBBKerFfg

Score
8/10

Malware Config

Targets

    • Target

      Fire.exe

    • Size

      326KB

    • MD5

      2274f9d8e7fb7825466a3e8a74afaa67

    • SHA1

      f11bf9ec82a7a56bd83bc42198fff51c322c6445

    • SHA256

      9fb3189684afe5e097f7cd1122e9228289967361d0d43738c927cce5b5d3a1f8

    • SHA512

      66aa6c262f0fc44f739e2cbfe2d70d3ad9ab3439e9fcb49d82b2a360c3a692c32b6320c81a0219adf1d39b2ffbc03c6758ca6bb76884dd3fb23d049f0b9055e8

    • SSDEEP

      6144:YaVWdyzOxeA1DfdwX3MmIOFg8vMn9S3N+WAGVkyzzbnicRmEzoC:YMROxdDfOnMmXaW9dVkyLicIs

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      Pr.exe

    • Size

      242KB

    • MD5

      e7d93229d4d58549f0875b5a7a1d564f

    • SHA1

      ce9d39a142f112b787bf9b36aa23ec646a1c975c

    • SHA256

      d99c9862c2c0e2f76074e48281f6c9183b5cd3d9da0851f56714c860d57a0cbc

    • SHA512

      79eeea54e1279caee1be968f4b51183a92c94b69004097289eb2cec772091f518ad83f7256829d0f247e4375d8563c59e92d0d83388212223e8bda888977b367

    • SSDEEP

      3072:1gIO5W5P9bfw5ygz9HPKIW+uIwj8U6RziMnM:1gZw5lb4Ygz9HYDIwj6+MnM

    Score
    1/10
    • Target

      info.exe

    • Size

      112KB

    • MD5

      d81239d37c2bd231c468c9402f236672

    • SHA1

      11a6faf7f1750c89c2b9a3560b1f19799f2fda8f

    • SHA256

      b659a9fad2c7c52eaf1423f886d37f333080bb54c8dd37397cf4d24013152acb

    • SHA512

      5f2572bda0c5ac57467610a6e71ccad5e7e76744a898d3f79223f9a0c8dca86101e5eb3a5f39e06092b549ea0e580910fb27ed0e9764889c768b9f7aaee8983c

    • SSDEEP

      1536:I7fbN3eEDhDPA/pICdUkbBtW7upvaLU0bI5taxKo0IOlnToIfLwSMR8OG:G7DhdC6kzWypvaQ0FxyNTBfL7

    Score
    1/10
    • Target

      p.exe

    • Size

      79KB

    • MD5

      0546abe6293ba40348e1734fafca47ec

    • SHA1

      37c0d892b38bbf9d8c6a8d35db5b32555cb758c8

    • SHA256

      5161cdafd0c6d79616d775f79214b2e7e3ad13de71db63e9fa6bfc448ba4084b

    • SHA512

      125e805e0461d1582a5b385b6c61e09f833d6464eaa23312ce7146207262f6d3d347f1ddc60bc38c1beadc479fc54dee55a4423f7991f8b163b92e3c551df265

    • SSDEEP

      1536:IZkXc3jjpQkmlt2niKNqOxrSuUnnI04By5Nv3+dV:IZkXc3jje2xtr3UnnI0Yy33+3

    Score
    1/10
    • Target

      p86.exe

    • Size

      63KB

    • MD5

      2f866893cd6f2f42bc066e9c2a41ad07

    • SHA1

      238da5b983806858a36a0d4b1c8736a328a99a8f

    • SHA256

      00fdee12197804731be3b66c8744cbcf1ab70bf7df2d0a746339cc4811b5f0d6

    • SHA512

      0f5351e3f8feb861fe3813b1a8fc82a6823dfd6e2bd0a2776741eb5d1f78b503cfbab7bab1df5a1ea07e50ba450e71b475edd0e6fba34809e76e2d1988f6e164

    • SSDEEP

      768:jE85L0/e4mYouQY9ot+3qennVG6ci4glF7buCq1FpwEDhEXpZwoHCspvaEhuBWdL:wHNF7buCq1FpZeeMppvfcSIiy5Nv3+yC

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks