General

  • Target

    9b081ca2d6a10d5681dff9972e77ad4b6669dbd8321da13b362fa73e6d1aaa2d

  • Size

    344KB

  • Sample

    240909-a8g3satejj

  • MD5

    d2ce1d3196c0f19ffd9a6b7166c11736

  • SHA1

    3b3ab24a1bffb9081ced30f9b60ad9ae2cdc14c2

  • SHA256

    9b081ca2d6a10d5681dff9972e77ad4b6669dbd8321da13b362fa73e6d1aaa2d

  • SHA512

    03edc5d8f961b6f799a8b678c685879352bd5b9f5cdc6426d6f4694eb054aadabea7bb2fe9fd648bfeefd6f6bc0e16b7157bf5188bbabf27dc258249915da59a

  • SSDEEP

    6144:A/T3zd9AVAixibDqwbKhqjX9kjeKHYFqoECLrLnZF7tGUP+BgkTbXD/3/:A/XM4DShe9EcHPLrLZ5AICgkTP3/

Malware Config

Targets

    • Target

      9b081ca2d6a10d5681dff9972e77ad4b6669dbd8321da13b362fa73e6d1aaa2d

    • Size

      344KB

    • MD5

      d2ce1d3196c0f19ffd9a6b7166c11736

    • SHA1

      3b3ab24a1bffb9081ced30f9b60ad9ae2cdc14c2

    • SHA256

      9b081ca2d6a10d5681dff9972e77ad4b6669dbd8321da13b362fa73e6d1aaa2d

    • SHA512

      03edc5d8f961b6f799a8b678c685879352bd5b9f5cdc6426d6f4694eb054aadabea7bb2fe9fd648bfeefd6f6bc0e16b7157bf5188bbabf27dc258249915da59a

    • SSDEEP

      6144:A/T3zd9AVAixibDqwbKhqjX9kjeKHYFqoECLrLnZF7tGUP+BgkTbXD/3/:A/XM4DShe9EcHPLrLZ5AICgkTP3/

    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Unsecured Credentials: Credentials In Files

      Steal credentials from unsecured files.

MITRE ATT&CK Enterprise v15

Tasks