General
-
Target
bb412fdf51a9b3213490db4ef9bdedc1b791ccbabc3655309e48d0d0d33c4d43
-
Size
81KB
-
Sample
241006-egy97ssalp
-
MD5
a42cf29107ea156ef0f1e266d1c8940d
-
SHA1
5804f5ca19f180da81b3c25bc12b9785eb2ebbf5
-
SHA256
bb412fdf51a9b3213490db4ef9bdedc1b791ccbabc3655309e48d0d0d33c4d43
-
SHA512
7cc647ca8d3c8568ab2d2aa01945b332781dfe7601b5917cab19b533484a884bac8856b235b004319e912e5b986f2c1e1f1329a550166f75e2830ccea9da1772
-
SSDEEP
1536:HLe+Zk7qzUJBeLkbiT29dXWEToa9D4ZQKbgZi1dst7x9PxQ:HLe+aezUDbHXKlZQKbgZi1St7xQ
Malware Config
Targets
-
-
Target
bb412fdf51a9b3213490db4ef9bdedc1b791ccbabc3655309e48d0d0d33c4d43
-
Size
81KB
-
MD5
a42cf29107ea156ef0f1e266d1c8940d
-
SHA1
5804f5ca19f180da81b3c25bc12b9785eb2ebbf5
-
SHA256
bb412fdf51a9b3213490db4ef9bdedc1b791ccbabc3655309e48d0d0d33c4d43
-
SHA512
7cc647ca8d3c8568ab2d2aa01945b332781dfe7601b5917cab19b533484a884bac8856b235b004319e912e5b986f2c1e1f1329a550166f75e2830ccea9da1772
-
SSDEEP
1536:HLe+Zk7qzUJBeLkbiT29dXWEToa9D4ZQKbgZi1dst7x9PxQ:HLe+aezUDbHXKlZQKbgZi1St7xQ
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1