General

  • Target

    458dc2ed07411a3136e8e37eadabf0f5debda6ec752c4a617a492e1666fd0a3d

  • Size

    1.7MB

  • Sample

    241026-drbq8azfml

  • MD5

    6224f737415e5727eeff90085678f493

  • SHA1

    866d86a55677ee0d6d7a0fb19b3aa4bbc91aa2bf

  • SHA256

    458dc2ed07411a3136e8e37eadabf0f5debda6ec752c4a617a492e1666fd0a3d

  • SHA512

    6d2a5efa86f5a3c888ab97c61525660391e05824bc6ad261515ea836a2c3ca09414ae295ba2ff7c9e41dc3bb8849d5564c7e849dd7bb228bfbfc99a5a6c2a393

  • SSDEEP

    49152:EKxNuLkTcKb4rSUfkVFjd/snji6attJM:xfuLkT5NUQrEnW6at

Malware Config

Targets

    • Target

      458dc2ed07411a3136e8e37eadabf0f5debda6ec752c4a617a492e1666fd0a3d

    • Size

      1.7MB

    • MD5

      6224f737415e5727eeff90085678f493

    • SHA1

      866d86a55677ee0d6d7a0fb19b3aa4bbc91aa2bf

    • SHA256

      458dc2ed07411a3136e8e37eadabf0f5debda6ec752c4a617a492e1666fd0a3d

    • SHA512

      6d2a5efa86f5a3c888ab97c61525660391e05824bc6ad261515ea836a2c3ca09414ae295ba2ff7c9e41dc3bb8849d5564c7e849dd7bb228bfbfc99a5a6c2a393

    • SSDEEP

      49152:EKxNuLkTcKb4rSUfkVFjd/snji6attJM:xfuLkT5NUQrEnW6at

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks