General

  • Target

    dd62c5c5c1a3c972759b105b5ca420212ac8f98f5a543bd45dc9b8db81a26b6e

  • Size

    3.1MB

  • Sample

    240808-ha3wlathle

  • MD5

    4c41ee8cf811570fa3cb022550959336

  • SHA1

    3eb63aa5047a10c3fcc0fa69d825c2491e45de0b

  • SHA256

    dd62c5c5c1a3c972759b105b5ca420212ac8f98f5a543bd45dc9b8db81a26b6e

  • SHA512

    6e06102315fd9de6d959a4bc1db4f52f476c325793ff3f5137cdf57aae3d78629244a82e9e29f52dc9472b3f0d228973ddd790c82c5ec671cdcee99d7d0e579a

  • SSDEEP

    49152:INEyYAem1cRhGpadDicKvVIlVyltSXuTfMiIS1+Na6jq6pfs:2EFmO+MyuqQifrQDO7

Malware Config

Targets

    • Target

      dd62c5c5c1a3c972759b105b5ca420212ac8f98f5a543bd45dc9b8db81a26b6e

    • Size

      3.1MB

    • MD5

      4c41ee8cf811570fa3cb022550959336

    • SHA1

      3eb63aa5047a10c3fcc0fa69d825c2491e45de0b

    • SHA256

      dd62c5c5c1a3c972759b105b5ca420212ac8f98f5a543bd45dc9b8db81a26b6e

    • SHA512

      6e06102315fd9de6d959a4bc1db4f52f476c325793ff3f5137cdf57aae3d78629244a82e9e29f52dc9472b3f0d228973ddd790c82c5ec671cdcee99d7d0e579a

    • SSDEEP

      49152:INEyYAem1cRhGpadDicKvVIlVyltSXuTfMiIS1+Na6jq6pfs:2EFmO+MyuqQifrQDO7

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks