General

  • Target

    fe36fa77c80e1629917d4bbde98c279e10ed01ae23ee0b3e6c1f3afdba7c7940

  • Size

    1.7MB

  • Sample

    241026-dv86wszgkq

  • MD5

    c8d274bc5fb406b42feb87bc283cf249

  • SHA1

    9906c9a4a3c2b72958dff12f70cff05338a0c9cb

  • SHA256

    fe36fa77c80e1629917d4bbde98c279e10ed01ae23ee0b3e6c1f3afdba7c7940

  • SHA512

    4d317a305de82429dd5b89d7c2deff9562b178c6bb834e12577d2661ceaa63400d414869d0678bb02fdc8e2eabf0e81674ea87268e8520e8de36a330f0a024ab

  • SSDEEP

    49152:oKxNuLkTcKb4rSUfkVFjgaB0zj0yjoB2:1fuLkT5NUQRB2Yyjl

Malware Config

Targets

    • Target

      fe36fa77c80e1629917d4bbde98c279e10ed01ae23ee0b3e6c1f3afdba7c7940

    • Size

      1.7MB

    • MD5

      c8d274bc5fb406b42feb87bc283cf249

    • SHA1

      9906c9a4a3c2b72958dff12f70cff05338a0c9cb

    • SHA256

      fe36fa77c80e1629917d4bbde98c279e10ed01ae23ee0b3e6c1f3afdba7c7940

    • SHA512

      4d317a305de82429dd5b89d7c2deff9562b178c6bb834e12577d2661ceaa63400d414869d0678bb02fdc8e2eabf0e81674ea87268e8520e8de36a330f0a024ab

    • SSDEEP

      49152:oKxNuLkTcKb4rSUfkVFjgaB0zj0yjoB2:1fuLkT5NUQRB2Yyjl

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks