General

  • Target

    2024-09-08_c9d644470b86079eaed5d74a3709ae01_mafia_magniber

  • Size

    2.3MB

  • Sample

    240908-mpppqs1fpm

  • MD5

    c9d644470b86079eaed5d74a3709ae01

  • SHA1

    a684c79621cfca74d6ab133f7e9c4b5b0bb96231

  • SHA256

    35e8a86d5515f09aef4faeff2da0feb6fc9d9906ea8f091f74d2cdfa9241f035

  • SHA512

    952767afa9728e3e7efcfbdf52d65d16bc21c549c97b3b7042ae31416a4ee093404441a88364428adf883a512050112b23c6f6a2bb3073c21b6d94afce7dcaf7

  • SSDEEP

    49152:kY9SGqm5VR94jgQBT7BLziNXXi/kH7yTdW11AoIJMVlc0:Nqm5GjgkLz8GkH+oI0l

Malware Config

Targets

    • Target

      2024-09-08_c9d644470b86079eaed5d74a3709ae01_mafia_magniber

    • Size

      2.3MB

    • MD5

      c9d644470b86079eaed5d74a3709ae01

    • SHA1

      a684c79621cfca74d6ab133f7e9c4b5b0bb96231

    • SHA256

      35e8a86d5515f09aef4faeff2da0feb6fc9d9906ea8f091f74d2cdfa9241f035

    • SHA512

      952767afa9728e3e7efcfbdf52d65d16bc21c549c97b3b7042ae31416a4ee093404441a88364428adf883a512050112b23c6f6a2bb3073c21b6d94afce7dcaf7

    • SSDEEP

      49152:kY9SGqm5VR94jgQBT7BLziNXXi/kH7yTdW11AoIJMVlc0:Nqm5GjgkLz8GkH+oI0l

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks