General

  • Target

    445d46fc1062b208c0a0706a328c51f932f6f05a035da1822e89a6384a11bb54

  • Size

    2.0MB

  • Sample

    241004-njh6favhqa

  • MD5

    81ae88ae57a4faa665006e5a56b67ee3

  • SHA1

    70cc2f2115f97760d56294ffb6699c203ea61704

  • SHA256

    445d46fc1062b208c0a0706a328c51f932f6f05a035da1822e89a6384a11bb54

  • SHA512

    1cff5416b6b94c53df3928ba4dcfa285dd3dfd8d1822327d77e22d356418b0a0e53d178749d6b3891854146bf83d0c12e632efc7216a1092e7e1c980b71911b8

  • SSDEEP

    49152:fvFHHf9rweMSSw34R0PvFSNBSQYdTpTgDAuV2/oqd:fvnzMdW51SLSQU5

Malware Config

Targets

    • Target

      445d46fc1062b208c0a0706a328c51f932f6f05a035da1822e89a6384a11bb54

    • Size

      2.0MB

    • MD5

      81ae88ae57a4faa665006e5a56b67ee3

    • SHA1

      70cc2f2115f97760d56294ffb6699c203ea61704

    • SHA256

      445d46fc1062b208c0a0706a328c51f932f6f05a035da1822e89a6384a11bb54

    • SHA512

      1cff5416b6b94c53df3928ba4dcfa285dd3dfd8d1822327d77e22d356418b0a0e53d178749d6b3891854146bf83d0c12e632efc7216a1092e7e1c980b71911b8

    • SSDEEP

      49152:fvFHHf9rweMSSw34R0PvFSNBSQYdTpTgDAuV2/oqd:fvnzMdW51SLSQU5

    • Parasite, Nexus

      Parasite (or Nexus) is an infostealer written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks