General

  • Target

    76d79b1dfbaca0a8e2b595cb7fb54b75d76e077b7e0739a0b4980e15ef0d7a51

  • Size

    76KB

  • Sample

    240825-ypklkatcpm

  • MD5

    f2b1b656e3845bee75ad20ee6c53d713

  • SHA1

    3f339c96f4a607376589f49de5b919efee60e9b6

  • SHA256

    76d79b1dfbaca0a8e2b595cb7fb54b75d76e077b7e0739a0b4980e15ef0d7a51

  • SHA512

    dd526c0daf964762b4fd9a9a3ab502c4f6c46cb2ef44104a3a19d8764f5ede320ff6dfc2021ed9782350565798e0eae3198245c2ad596922c47ce4a11a675d88

  • SSDEEP

    1536:8qe+Zk7VJbwlYXjPrsqrZMYR5p8woriw+d9bHrkT5gUHz7FxtJ:8qe+azbRPrlr9RXForBkfkT5xHzD

Malware Config

Targets

    • Target

      76d79b1dfbaca0a8e2b595cb7fb54b75d76e077b7e0739a0b4980e15ef0d7a51

    • Size

      76KB

    • MD5

      f2b1b656e3845bee75ad20ee6c53d713

    • SHA1

      3f339c96f4a607376589f49de5b919efee60e9b6

    • SHA256

      76d79b1dfbaca0a8e2b595cb7fb54b75d76e077b7e0739a0b4980e15ef0d7a51

    • SHA512

      dd526c0daf964762b4fd9a9a3ab502c4f6c46cb2ef44104a3a19d8764f5ede320ff6dfc2021ed9782350565798e0eae3198245c2ad596922c47ce4a11a675d88

    • SSDEEP

      1536:8qe+Zk7VJbwlYXjPrsqrZMYR5p8woriw+d9bHrkT5gUHz7FxtJ:8qe+azbRPrlr9RXForBkfkT5xHzD

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks