General

  • Target

    3uTools_v3.12.006_Setup_x86.exe

  • Size

    193.2MB

  • Sample

    240613-f2cglsvhqc

  • MD5

    a2c222a9b49c6b38556362d5ec53538e

  • SHA1

    8cc113a0acab6954d60bd4076b2b6d3e3c24efec

  • SHA256

    3502f728e42772d463bb82353874acda3912c82e32fda81ab14e29bfb14ff003

  • SHA512

    e73aa22f78009b835041da55889119437d80eaf568d9c7a4bf9992b396d182c8ad5fce2183cab3e4b0a791e9ef6c69ba28e010c8541195f2abdf028dd4a7c1ae

  • SSDEEP

    3145728:1Dy0UPSRHsoyvUYC2LYhMvQmiMY6u2jkayKGS6giuFxrcLKq8iOqIX7:Z5UaRHe9JiMY6u2j3yKGXgzALJO

Malware Config

Targets

    • Target

      3uTools_v3.12.006_Setup_x86.exe

    • Size

      193.2MB

    • MD5

      a2c222a9b49c6b38556362d5ec53538e

    • SHA1

      8cc113a0acab6954d60bd4076b2b6d3e3c24efec

    • SHA256

      3502f728e42772d463bb82353874acda3912c82e32fda81ab14e29bfb14ff003

    • SHA512

      e73aa22f78009b835041da55889119437d80eaf568d9c7a4bf9992b396d182c8ad5fce2183cab3e4b0a791e9ef6c69ba28e010c8541195f2abdf028dd4a7c1ae

    • SSDEEP

      3145728:1Dy0UPSRHsoyvUYC2LYhMvQmiMY6u2jkayKGS6giuFxrcLKq8iOqIX7:Z5UaRHe9JiMY6u2j3yKGXgzALJO

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks