General

  • Target

    43623bb89cc7d42fe308bd4fc16e00f4648f2ee99e2394c2d8a01d1e1aef7eff

  • Size

    76KB

  • Sample

    240614-zqeblszanm

  • MD5

    c70f8a19788bbf2da7359eda5bd76079

  • SHA1

    14cea5fb4499ea7a800b417da7c6719515fdfce4

  • SHA256

    43623bb89cc7d42fe308bd4fc16e00f4648f2ee99e2394c2d8a01d1e1aef7eff

  • SHA512

    0394d7cb6ca2cb440e952e6bc1f2ff2b5ed730dd2bc8d12e2b6306a9ed4a56e18de17d45bc1e958a92da6dafe2b4134d2f7c5afcbf587e69e24451a469c94683

  • SSDEEP

    1536:t3x85+Ks29IIpmhzjvvwzzw1T1XfbsSx7kw6SPikqD/j/0PK6318tSOYpJVipn/C:th85+KsRIM1jQzc1P5x7kmPikqzjMPK4

Malware Config

Targets

    • Target

      43623bb89cc7d42fe308bd4fc16e00f4648f2ee99e2394c2d8a01d1e1aef7eff

    • Size

      76KB

    • MD5

      c70f8a19788bbf2da7359eda5bd76079

    • SHA1

      14cea5fb4499ea7a800b417da7c6719515fdfce4

    • SHA256

      43623bb89cc7d42fe308bd4fc16e00f4648f2ee99e2394c2d8a01d1e1aef7eff

    • SHA512

      0394d7cb6ca2cb440e952e6bc1f2ff2b5ed730dd2bc8d12e2b6306a9ed4a56e18de17d45bc1e958a92da6dafe2b4134d2f7c5afcbf587e69e24451a469c94683

    • SSDEEP

      1536:t3x85+Ks29IIpmhzjvvwzzw1T1XfbsSx7kw6SPikqD/j/0PK6318tSOYpJVipn/C:th85+KsRIM1jQzc1P5x7kmPikqzjMPK4

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks