General

  • Target

    a010c400277e7286186cb5484cd48b57a857b05d21de5ab951b4d6c935f0da01

  • Size

    1.7MB

  • Sample

    241021-tncr4syejc

  • MD5

    b282fe80444c6e989aac8eda93ebce94

  • SHA1

    7986e8663f6a61bd0c31c9f938dc113a7c2e4c8c

  • SHA256

    a010c400277e7286186cb5484cd48b57a857b05d21de5ab951b4d6c935f0da01

  • SHA512

    ff45a8451bd982c343f2e3133a407b56a0f04a58304ee23f6f4eb503426baf104935fa500cd171bc5da144a456c666b1f5efeda51540a3d933c15f4bb5b29077

  • SSDEEP

    49152:zKxNuLkTcKb4rSUfkVFjwxlMPdlR8v4UC0Eg6ET7M/I:mfuLkT5NUQWl2/V0cETQ/I

Malware Config

Targets

    • Target

      a010c400277e7286186cb5484cd48b57a857b05d21de5ab951b4d6c935f0da01

    • Size

      1.7MB

    • MD5

      b282fe80444c6e989aac8eda93ebce94

    • SHA1

      7986e8663f6a61bd0c31c9f938dc113a7c2e4c8c

    • SHA256

      a010c400277e7286186cb5484cd48b57a857b05d21de5ab951b4d6c935f0da01

    • SHA512

      ff45a8451bd982c343f2e3133a407b56a0f04a58304ee23f6f4eb503426baf104935fa500cd171bc5da144a456c666b1f5efeda51540a3d933c15f4bb5b29077

    • SSDEEP

      49152:zKxNuLkTcKb4rSUfkVFjwxlMPdlR8v4UC0Eg6ET7M/I:mfuLkT5NUQWl2/V0cETQ/I

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks