General

  • Target

    b1f2a652b44d168317405b3992bbc9c65c3892a9cd4c09fd6b024074d6ffe96b

  • Size

    1.8MB

  • Sample

    241026-dwj86awpcq

  • MD5

    606e2302a9cef85bf5b3decb552b8d23

  • SHA1

    b2961d9db915ed7c646644df345ec678a6650a68

  • SHA256

    b1f2a652b44d168317405b3992bbc9c65c3892a9cd4c09fd6b024074d6ffe96b

  • SHA512

    a1108c4883263df31daad71b95bafa6b412f93d6297b0b5a367d3359281535f8f9fcbff7e1f4617a8da88e1b9858e352f4884abfea0926871caeb7515b16d3d0

  • SSDEEP

    49152:Cx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAgaB0zj0yjoB2:CvbjVkjjCAzJqB2Yyjl

Malware Config

Targets

    • Target

      b1f2a652b44d168317405b3992bbc9c65c3892a9cd4c09fd6b024074d6ffe96b

    • Size

      1.8MB

    • MD5

      606e2302a9cef85bf5b3decb552b8d23

    • SHA1

      b2961d9db915ed7c646644df345ec678a6650a68

    • SHA256

      b1f2a652b44d168317405b3992bbc9c65c3892a9cd4c09fd6b024074d6ffe96b

    • SHA512

      a1108c4883263df31daad71b95bafa6b412f93d6297b0b5a367d3359281535f8f9fcbff7e1f4617a8da88e1b9858e352f4884abfea0926871caeb7515b16d3d0

    • SSDEEP

      49152:Cx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAgaB0zj0yjoB2:CvbjVkjjCAzJqB2Yyjl

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks