General

  • Target

    Chess.zip

  • Size

    106.0MB

  • Sample

    241015-z3p9ms1hkk

  • MD5

    6aab732db86421ee8520be47d54cebd5

  • SHA1

    6e4751b28dbe8fbb385031911c2ae76bda8183ab

  • SHA256

    76b10219dffc9d98bbd95e1fd1bc43f2582d3c77c405d108c3d0550f388d8e1d

  • SHA512

    cd5b02e03b670e7cc77f89eb43982182413d04565944ef4a0118c770c24b1ba29090df3983cbd08a43493f9a46a94c20e110c3d8a5814bc72252d02f421f6425

  • SSDEEP

    3145728:5ozo8Zg7T+7D0OPCXOa4q/N/y0WFwmSczj2ID:5Vugu7D0kgObqI0WvS0jDD

Malware Config

Targets

    • Target

      Chess.zip

    • Size

      106.0MB

    • MD5

      6aab732db86421ee8520be47d54cebd5

    • SHA1

      6e4751b28dbe8fbb385031911c2ae76bda8183ab

    • SHA256

      76b10219dffc9d98bbd95e1fd1bc43f2582d3c77c405d108c3d0550f388d8e1d

    • SHA512

      cd5b02e03b670e7cc77f89eb43982182413d04565944ef4a0118c770c24b1ba29090df3983cbd08a43493f9a46a94c20e110c3d8a5814bc72252d02f421f6425

    • SSDEEP

      3145728:5ozo8Zg7T+7D0OPCXOa4q/N/y0WFwmSczj2ID:5Vugu7D0kgObqI0WvS0jDD

    • Uses browser remote debugging

      Can be used control the browser and steal sensitive information such as credentials and session cookies.

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks