General
-
Target
7452b93cf238f234287009f0f8e3128ad5237e1ffa80183fe81d6260bc521986
-
Size
694KB
-
Sample
240914-3dxh7ssgqc
-
MD5
61717cf3f7b13588a379570ee9f0f8a3
-
SHA1
72fa5666e54bfe2f69e2a37870aa52758b87e71e
-
SHA256
7452b93cf238f234287009f0f8e3128ad5237e1ffa80183fe81d6260bc521986
-
SHA512
5c67c8d3cc6ec30a3ebbc4fefcba25d26a34b2aa6ad5b84ca5f8ce99c918bca587169e51a3c367737f3abd30936abed1b11e03ae280af30ad5db02da1b122dfa
-
SSDEEP
12288:RxQlwcdv3yPnk4kZkZclQokLAyvq+fPWcFunz2iGUbmejUQkHjg:mWZclGAlCODCR8UQ
Malware Config
Targets
-
-
Target
7452b93cf238f234287009f0f8e3128ad5237e1ffa80183fe81d6260bc521986
-
Size
694KB
-
MD5
61717cf3f7b13588a379570ee9f0f8a3
-
SHA1
72fa5666e54bfe2f69e2a37870aa52758b87e71e
-
SHA256
7452b93cf238f234287009f0f8e3128ad5237e1ffa80183fe81d6260bc521986
-
SHA512
5c67c8d3cc6ec30a3ebbc4fefcba25d26a34b2aa6ad5b84ca5f8ce99c918bca587169e51a3c367737f3abd30936abed1b11e03ae280af30ad5db02da1b122dfa
-
SSDEEP
12288:RxQlwcdv3yPnk4kZkZclQokLAyvq+fPWcFunz2iGUbmejUQkHjg:mWZclGAlCODCR8UQ
Score9/10-
Credentials from Password Stores: Credentials from Web Browsers
Malicious Access or copy of Web Browser Credential store.
-
Credentials from Password Stores: Windows Credential Manager
Suspicious access to Credentials History.
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
2Credentials from Web Browsers
1Windows Credential Manager
1Unsecured Credentials
1Credentials In Files
1