General
-
Target
95ee5d59810423d75c32a2816e147387156b9013ea4006f1cd161e7e48c8d05a
-
Size
577KB
-
Sample
241017-xxyygs1dne
-
MD5
5ac75497243e4088747e34784626cd4c
-
SHA1
db13c6bdee81c4ceebf2d7e319175229d37cb878
-
SHA256
95ee5d59810423d75c32a2816e147387156b9013ea4006f1cd161e7e48c8d05a
-
SHA512
0ed6ddfd22974993120b6da4c126790aa9ed2ea3c9b48777327fbfbbd000cc4a3383386b4f399b93881f401480288498ec873df68b18b8a754f81e0c6e2d3291
-
SSDEEP
6144:L13TE7cV3iwbAFRWAbd4nf0H05yqE6Hl0ChW0+ksllAXBu0lWGWUJJQ4t0BHQQfu:L13A7a3iwbihym2g7XO3LWUQfh4Co
Malware Config
Targets
-
-
Target
95ee5d59810423d75c32a2816e147387156b9013ea4006f1cd161e7e48c8d05a
-
Size
577KB
-
MD5
5ac75497243e4088747e34784626cd4c
-
SHA1
db13c6bdee81c4ceebf2d7e319175229d37cb878
-
SHA256
95ee5d59810423d75c32a2816e147387156b9013ea4006f1cd161e7e48c8d05a
-
SHA512
0ed6ddfd22974993120b6da4c126790aa9ed2ea3c9b48777327fbfbbd000cc4a3383386b4f399b93881f401480288498ec873df68b18b8a754f81e0c6e2d3291
-
SSDEEP
6144:L13TE7cV3iwbAFRWAbd4nf0H05yqE6Hl0ChW0+ksllAXBu0lWGWUJJQ4t0BHQQfu:L13A7a3iwbihym2g7XO3LWUQfh4Co
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1