General

  • Target

    00c27d0e7ed0a182cae2ae9be544c546973f578dc102455864c29f719a6a884eN

  • Size

    2.6MB

  • Sample

    241026-dg4z1szekl

  • MD5

    f154e1f00510531d64a914623bc1e8e0

  • SHA1

    97c9053db16b0c68e96c2315c53dbc6d7066d5de

  • SHA256

    00c27d0e7ed0a182cae2ae9be544c546973f578dc102455864c29f719a6a884e

  • SHA512

    4c79e95fa8791e3a8aebde867e68826a442696d19ba71188d3d69d0841e77507790440707ebdc79f1194dcc745bc9cde3f7b5976c9091c36b2cf387bf4416d4a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBJB/bS:sxX7QnxrloE5dpUpCb

Malware Config

Targets

    • Target

      00c27d0e7ed0a182cae2ae9be544c546973f578dc102455864c29f719a6a884eN

    • Size

      2.6MB

    • MD5

      f154e1f00510531d64a914623bc1e8e0

    • SHA1

      97c9053db16b0c68e96c2315c53dbc6d7066d5de

    • SHA256

      00c27d0e7ed0a182cae2ae9be544c546973f578dc102455864c29f719a6a884e

    • SHA512

      4c79e95fa8791e3a8aebde867e68826a442696d19ba71188d3d69d0841e77507790440707ebdc79f1194dcc745bc9cde3f7b5976c9091c36b2cf387bf4416d4a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBJB/bS:sxX7QnxrloE5dpUpCb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks