General

  • Target

    wt_launcher_1.0.3.433-xmvzdeadv.exe

  • Size

    11.4MB

  • Sample

    240806-nq5m1ssaqd

  • MD5

    6904a00afc9223bf72e8345484202bf3

  • SHA1

    6b7daa183080aacf2c4f44f1f2855afcc5090b89

  • SHA256

    bdd06bba6d6c247789d1a269c5fbb9cf6175626133b49e32281d908f461df975

  • SHA512

    c695dc39f7a1ae7a45cd1f2b988bdf60df7342d7d76b3efa58c0bab31179b32266906ee9e9785100cbdc72c5133d59ba5c1998bdbb088f1bc1f5e7cc699036e0

  • SSDEEP

    196608:AD/9qB4zIJozWsp+fJSl4MSFlTXzq3CeM0YOOp58J0cFtq39grUI:AD/9qu8i79at5z9evYOOp5A0cG3m

Malware Config

Targets

    • Target

      wt_launcher_1.0.3.433-xmvzdeadv.exe

    • Size

      11.4MB

    • MD5

      6904a00afc9223bf72e8345484202bf3

    • SHA1

      6b7daa183080aacf2c4f44f1f2855afcc5090b89

    • SHA256

      bdd06bba6d6c247789d1a269c5fbb9cf6175626133b49e32281d908f461df975

    • SHA512

      c695dc39f7a1ae7a45cd1f2b988bdf60df7342d7d76b3efa58c0bab31179b32266906ee9e9785100cbdc72c5133d59ba5c1998bdbb088f1bc1f5e7cc699036e0

    • SSDEEP

      196608:AD/9qB4zIJozWsp+fJSl4MSFlTXzq3CeM0YOOp58J0cFtq39grUI:AD/9qu8i79at5z9evYOOp5A0cG3m

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Executes dropped EXE

    • Detected potential entity reuse from brand steam.

MITRE ATT&CK Enterprise v15

Tasks