General

  • Target

    b8a09e4971f329afcb30b7d2a858f3c8fda49023c2fb154b0cc148be6ebfe51e

  • Size

    3.3MB

  • Sample

    240614-dq732atanc

  • MD5

    1fb36ec40b8dac633f226b941c5c9ed4

  • SHA1

    0efdccfb197b85637eb475fed1fa218ce61a1149

  • SHA256

    b8a09e4971f329afcb30b7d2a858f3c8fda49023c2fb154b0cc148be6ebfe51e

  • SHA512

    591b6de05eb65b818eff346e201bbc4477aa162b7018efa2c1ea7cf2abc7b286b18d90c3fe5395f7852ca063ceb7528f1acbc4b8b18e1081a70a8aa4f0a0e9d0

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bSqz8:sxX7QnxrloE5dpUpJbVz8

Malware Config

Targets

    • Target

      b8a09e4971f329afcb30b7d2a858f3c8fda49023c2fb154b0cc148be6ebfe51e

    • Size

      3.3MB

    • MD5

      1fb36ec40b8dac633f226b941c5c9ed4

    • SHA1

      0efdccfb197b85637eb475fed1fa218ce61a1149

    • SHA256

      b8a09e4971f329afcb30b7d2a858f3c8fda49023c2fb154b0cc148be6ebfe51e

    • SHA512

      591b6de05eb65b818eff346e201bbc4477aa162b7018efa2c1ea7cf2abc7b286b18d90c3fe5395f7852ca063ceb7528f1acbc4b8b18e1081a70a8aa4f0a0e9d0

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bSqz8:sxX7QnxrloE5dpUpJbVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks