General

  • Target

    2024-06-13_4555b22267a95074ead03ca63eee1d71_avoslocker_revil

  • Size

    3.5MB

  • Sample

    240613-g83sta1gkq

  • MD5

    4555b22267a95074ead03ca63eee1d71

  • SHA1

    d23a2caa091ba7f42bfc47be1a42ac0392f499e7

  • SHA256

    5fe7130ef2671bd73dfa562f204dcc1f594fae7c2fef837fe43fbb314b2d5202

  • SHA512

    0d0e388035f5c7d1a728b52c8fb466cb4c46501aedb5e5b31c91891a227bac5b294ff23a5a62a2c3a966fca4fe7b6085d2730119e9766e91dcc8225987f2d8a7

  • SSDEEP

    98304:t6vnrMGbmfzSCHeumHwGudwmQsKfOVcI:snwbzJAbywmYel

Score
7/10

Malware Config

Targets

    • Target

      2024-06-13_4555b22267a95074ead03ca63eee1d71_avoslocker_revil

    • Size

      3.5MB

    • MD5

      4555b22267a95074ead03ca63eee1d71

    • SHA1

      d23a2caa091ba7f42bfc47be1a42ac0392f499e7

    • SHA256

      5fe7130ef2671bd73dfa562f204dcc1f594fae7c2fef837fe43fbb314b2d5202

    • SHA512

      0d0e388035f5c7d1a728b52c8fb466cb4c46501aedb5e5b31c91891a227bac5b294ff23a5a62a2c3a966fca4fe7b6085d2730119e9766e91dcc8225987f2d8a7

    • SSDEEP

      98304:t6vnrMGbmfzSCHeumHwGudwmQsKfOVcI:snwbzJAbywmYel

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks