General

  • Target

    30d16d727aa7ef209089f78fba697858d390865cf4e3f491fb3085d93655854a

  • Size

    1.3MB

  • Sample

    241021-tpg38ayeka

  • MD5

    85ab1a48b9fb2bca83d8028aa5eba7f3

  • SHA1

    bf1ee01c166aec5c160aa08edaac8fecd32525ce

  • SHA256

    30d16d727aa7ef209089f78fba697858d390865cf4e3f491fb3085d93655854a

  • SHA512

    e2fb5a719168410679ca173bdc90554903649d32561fa322938ff1d0af7165dfccca8493da665087fef36e8d66396b32c7b7c43f2d02d7d823cebe09b06c696e

  • SSDEEP

    24576:kIXgCWSpRy4dSJVDsVu5unzqWvX1iWHRlMugdD+JsRgZRJ4fM430Eg6nET7M/IiN:nWSjLSJlsQuzqW/1fxlMPdlR8v4UC0EU

Malware Config

Targets

    • Target

      30d16d727aa7ef209089f78fba697858d390865cf4e3f491fb3085d93655854a

    • Size

      1.3MB

    • MD5

      85ab1a48b9fb2bca83d8028aa5eba7f3

    • SHA1

      bf1ee01c166aec5c160aa08edaac8fecd32525ce

    • SHA256

      30d16d727aa7ef209089f78fba697858d390865cf4e3f491fb3085d93655854a

    • SHA512

      e2fb5a719168410679ca173bdc90554903649d32561fa322938ff1d0af7165dfccca8493da665087fef36e8d66396b32c7b7c43f2d02d7d823cebe09b06c696e

    • SSDEEP

      24576:kIXgCWSpRy4dSJVDsVu5unzqWvX1iWHRlMugdD+JsRgZRJ4fM430Eg6nET7M/IiN:nWSjLSJlsQuzqW/1fxlMPdlR8v4UC0EU

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks