General
-
Target
dc559cbd7bd75982c3b5664470d44475156a2fabaa02a3c61d8a946380379cceN
-
Size
970KB
-
Sample
241013-3ebccsxbjq
-
MD5
317c6ab25574d7f469a47590c8d5eb40
-
SHA1
ff4c7e89fc8e4e91921e68d0e26ce64d8e0984ad
-
SHA256
dc559cbd7bd75982c3b5664470d44475156a2fabaa02a3c61d8a946380379cce
-
SHA512
26d0bf9aee001cd20c7342fb1dd1ca8487e64767cae83d82a0847710f8818adb902d13d07dead1e2202c2d76ad96d524bc30813aadbe12403cb19ad92c966481
-
SSDEEP
24576:RV5fin1sAT4v8U0bue7mRl7muSHDpjKJRl1BwF81Ws:DZ6ue7gNHSjpjK3LBd
Malware Config
Targets
-
-
Target
dc559cbd7bd75982c3b5664470d44475156a2fabaa02a3c61d8a946380379cceN
-
Size
970KB
-
MD5
317c6ab25574d7f469a47590c8d5eb40
-
SHA1
ff4c7e89fc8e4e91921e68d0e26ce64d8e0984ad
-
SHA256
dc559cbd7bd75982c3b5664470d44475156a2fabaa02a3c61d8a946380379cce
-
SHA512
26d0bf9aee001cd20c7342fb1dd1ca8487e64767cae83d82a0847710f8818adb902d13d07dead1e2202c2d76ad96d524bc30813aadbe12403cb19ad92c966481
-
SSDEEP
24576:RV5fin1sAT4v8U0bue7mRl7muSHDpjKJRl1BwF81Ws:DZ6ue7gNHSjpjK3LBd
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1