General

  • Target

    b51be1a1106fc7eb8a2db1c43bb5c34c7f66872d1421d2c0265767afd57d994a

  • Size

    3.9MB

  • Sample

    240614-djxzgswhkq

  • MD5

    5348da2c63a0193d370a7da78fc3a8b9

  • SHA1

    69a1ebda52b6fdd73cff4b646c336410dcb6ee3a

  • SHA256

    b51be1a1106fc7eb8a2db1c43bb5c34c7f66872d1421d2c0265767afd57d994a

  • SHA512

    88230ab1ec96238f6321c5b2a6a4f5166be9da183ba4d075c5113a9187d24c685f91f8571cf0ab66f751104e36a73cb6284a6dd9b3c676316d91f4fe392d79a4

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpfbVz8eLFcz

Malware Config

Targets

    • Target

      b51be1a1106fc7eb8a2db1c43bb5c34c7f66872d1421d2c0265767afd57d994a

    • Size

      3.9MB

    • MD5

      5348da2c63a0193d370a7da78fc3a8b9

    • SHA1

      69a1ebda52b6fdd73cff4b646c336410dcb6ee3a

    • SHA256

      b51be1a1106fc7eb8a2db1c43bb5c34c7f66872d1421d2c0265767afd57d994a

    • SHA512

      88230ab1ec96238f6321c5b2a6a4f5166be9da183ba4d075c5113a9187d24c685f91f8571cf0ab66f751104e36a73cb6284a6dd9b3c676316d91f4fe392d79a4

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpfbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks