General
-
Target
2da7ea8229edefac78402fee509ec1152315b6027878829480085315b6eabaf7
-
Size
33KB
-
Sample
241013-k84xnatcpp
-
MD5
661b4e1450972a16271f168aa4178ea6
-
SHA1
662406623e4e104984785be7aba37217a905c07c
-
SHA256
2da7ea8229edefac78402fee509ec1152315b6027878829480085315b6eabaf7
-
SHA512
57d6e1189c8ad8f6af2c7b1131ab3596c8ab98174aaae849e9b0ce04ac90d3845510d814bd9d3aebe49befa4d6ab28dc33bf62ee020daedb153b550f9cca1298
-
SSDEEP
768:2t6FElOIEvzMXqtwp/lttaL7HP4EUi91acSWGoYoLVCm1:2t6FaYzMXqtGNttyeiZnZLYm1
Malware Config
Targets
-
-
Target
2da7ea8229edefac78402fee509ec1152315b6027878829480085315b6eabaf7
-
Size
33KB
-
MD5
661b4e1450972a16271f168aa4178ea6
-
SHA1
662406623e4e104984785be7aba37217a905c07c
-
SHA256
2da7ea8229edefac78402fee509ec1152315b6027878829480085315b6eabaf7
-
SHA512
57d6e1189c8ad8f6af2c7b1131ab3596c8ab98174aaae849e9b0ce04ac90d3845510d814bd9d3aebe49befa4d6ab28dc33bf62ee020daedb153b550f9cca1298
-
SSDEEP
768:2t6FElOIEvzMXqtwp/lttaL7HP4EUi91acSWGoYoLVCm1:2t6FaYzMXqtGNttyeiZnZLYm1
Score8/10-
Drops file in Drivers directory
-
Drops startup file
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1