General

  • Target

    a426dbf08184602fec72f0a1190b5aac815a8f8e8108bda133404fa9edf65e54

  • Size

    2.6MB

  • Sample

    241021-sby9xaxgpe

  • MD5

    affca9d607f00a9ae32e687002dbc070

  • SHA1

    a32ad401a38e5816a3b8fd4cce4e5561d4259031

  • SHA256

    a426dbf08184602fec72f0a1190b5aac815a8f8e8108bda133404fa9edf65e54

  • SHA512

    fc13c289e8f6b79d290aaac203239c99ea85404410369a532c9329782b629df47e92c74c0036ce88aede316ba469f5969c74cebc60cfe0c430c8fffd05e83e22

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bS:sxX7QnxrloE5dpUpNb

Malware Config

Targets

    • Target

      a426dbf08184602fec72f0a1190b5aac815a8f8e8108bda133404fa9edf65e54

    • Size

      2.6MB

    • MD5

      affca9d607f00a9ae32e687002dbc070

    • SHA1

      a32ad401a38e5816a3b8fd4cce4e5561d4259031

    • SHA256

      a426dbf08184602fec72f0a1190b5aac815a8f8e8108bda133404fa9edf65e54

    • SHA512

      fc13c289e8f6b79d290aaac203239c99ea85404410369a532c9329782b629df47e92c74c0036ce88aede316ba469f5969c74cebc60cfe0c430c8fffd05e83e22

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bS:sxX7QnxrloE5dpUpNb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks