General

  • Target

    7092e2b7189aaae315877a5d4e0918980d2d88b07497df2475e1487e6a717310N

  • Size

    2.6MB

  • Sample

    241021-qssscavhlc

  • MD5

    7646f6a858ef375b87f4228f5bbf5120

  • SHA1

    fd7e2d090678d96ca4ec9fb811681a9ec8d5b26c

  • SHA256

    7092e2b7189aaae315877a5d4e0918980d2d88b07497df2475e1487e6a717310

  • SHA512

    4879f1db59e49680880aec59b5684b9c3a2aafdf58f2ec5a453530c3fc02ac882d9d772bff4607b4fb13f4dc0fdaebc403fdd8c152a14586b0d29c7a0ee376a9

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBVB/bSq:sxX7QnxrloE5dpUpSbV

Malware Config

Targets

    • Target

      7092e2b7189aaae315877a5d4e0918980d2d88b07497df2475e1487e6a717310N

    • Size

      2.6MB

    • MD5

      7646f6a858ef375b87f4228f5bbf5120

    • SHA1

      fd7e2d090678d96ca4ec9fb811681a9ec8d5b26c

    • SHA256

      7092e2b7189aaae315877a5d4e0918980d2d88b07497df2475e1487e6a717310

    • SHA512

      4879f1db59e49680880aec59b5684b9c3a2aafdf58f2ec5a453530c3fc02ac882d9d772bff4607b4fb13f4dc0fdaebc403fdd8c152a14586b0d29c7a0ee376a9

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBVB/bSq:sxX7QnxrloE5dpUpSbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks