General

  • Target

    ba2ee72bcb18e987c63e2bd1c24f6b43d82d5e74d537d42f0b0b545f37c4dfdd

  • Size

    90KB

  • Sample

    240614-dsmvwatarb

  • MD5

    a875f8bfd031f38c656b7643b05b57d8

  • SHA1

    832b402ba588ffafed31b957ded48c94d5ca8f54

  • SHA256

    ba2ee72bcb18e987c63e2bd1c24f6b43d82d5e74d537d42f0b0b545f37c4dfdd

  • SHA512

    4c3ec205a1b697585bb6a90e75f1e2d3a9121e4f0a595b40c9a47138a2c2b510abb6d9b92aed9e6878208477663f9ec8e6d75e1a6da647519168c2e3abb3b729

  • SSDEEP

    1536:t3x85+Ks2QpKZgU4/uS4MjmBUPbOfwJ4zXOMbLaI7kiGmb49jxYB8:th85+Ks9KEWSZmBSbOoJ4z+ALSW4JOB8

Malware Config

Targets

    • Target

      ba2ee72bcb18e987c63e2bd1c24f6b43d82d5e74d537d42f0b0b545f37c4dfdd

    • Size

      90KB

    • MD5

      a875f8bfd031f38c656b7643b05b57d8

    • SHA1

      832b402ba588ffafed31b957ded48c94d5ca8f54

    • SHA256

      ba2ee72bcb18e987c63e2bd1c24f6b43d82d5e74d537d42f0b0b545f37c4dfdd

    • SHA512

      4c3ec205a1b697585bb6a90e75f1e2d3a9121e4f0a595b40c9a47138a2c2b510abb6d9b92aed9e6878208477663f9ec8e6d75e1a6da647519168c2e3abb3b729

    • SSDEEP

      1536:t3x85+Ks2QpKZgU4/uS4MjmBUPbOfwJ4zXOMbLaI7kiGmb49jxYB8:th85+Ks9KEWSZmBSbOoJ4z+ALSW4JOB8

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks