General

  • Target

    ad75321a09bffb2fbcdab74d1f0869436a5a1cf0c6c7cbacbfaa0c40f06afa7e

  • Size

    17KB

  • Sample

    240613-gasvyszdjk

  • MD5

    098dd0c82b3da000009d972c1227af15

  • SHA1

    3f6ff523ecd09fb4b87444576262801bfa2a1007

  • SHA256

    ad75321a09bffb2fbcdab74d1f0869436a5a1cf0c6c7cbacbfaa0c40f06afa7e

  • SHA512

    dfa4410079356a09cea10161fb3651878f9c2816532cdc9a9c2765072b7ad308b5b1d67d31d4dddb6c890e078215b155ff5c9af82caedf0baf9c2c8e0d8a6277

  • SSDEEP

    384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/QoG:IMAQ+BzWPEwnE+KHM2/QoG

Malware Config

Targets

    • Target

      ad75321a09bffb2fbcdab74d1f0869436a5a1cf0c6c7cbacbfaa0c40f06afa7e

    • Size

      17KB

    • MD5

      098dd0c82b3da000009d972c1227af15

    • SHA1

      3f6ff523ecd09fb4b87444576262801bfa2a1007

    • SHA256

      ad75321a09bffb2fbcdab74d1f0869436a5a1cf0c6c7cbacbfaa0c40f06afa7e

    • SHA512

      dfa4410079356a09cea10161fb3651878f9c2816532cdc9a9c2765072b7ad308b5b1d67d31d4dddb6c890e078215b155ff5c9af82caedf0baf9c2c8e0d8a6277

    • SSDEEP

      384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/QoG:IMAQ+BzWPEwnE+KHM2/QoG

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks