General

  • Target

    1cda6abc95905771b74bdf46951fea4fe4254c28888b9ddc72c04b3b2ac9ee32

  • Size

    2.0MB

  • Sample

    241026-dwjydswpcp

  • MD5

    42c820bde3a4df47efec8d9e26c0e2e8

  • SHA1

    d6cfe101fce753c74f21625a78f80637a8e7c44d

  • SHA256

    1cda6abc95905771b74bdf46951fea4fe4254c28888b9ddc72c04b3b2ac9ee32

  • SHA512

    98c7a68296628500d372a844bb56056c851e5ea7d7dd2a2f37d5c0a78e9aa0f3390d888ccac82f5f007755f5cf245cf40f2ca0a6dd7aae4c416d086d65f799f0

  • SSDEEP

    24576:0zs3yG2Rwd14jK42aMQDJoAOM08/85RkptVIJqXatr0zAiX90z/F0jsFB3SQk:svRwdG2NcOMjUfkptVxXaB0zj0yjoB2

Malware Config

Targets

    • Target

      1cda6abc95905771b74bdf46951fea4fe4254c28888b9ddc72c04b3b2ac9ee32

    • Size

      2.0MB

    • MD5

      42c820bde3a4df47efec8d9e26c0e2e8

    • SHA1

      d6cfe101fce753c74f21625a78f80637a8e7c44d

    • SHA256

      1cda6abc95905771b74bdf46951fea4fe4254c28888b9ddc72c04b3b2ac9ee32

    • SHA512

      98c7a68296628500d372a844bb56056c851e5ea7d7dd2a2f37d5c0a78e9aa0f3390d888ccac82f5f007755f5cf245cf40f2ca0a6dd7aae4c416d086d65f799f0

    • SSDEEP

      24576:0zs3yG2Rwd14jK42aMQDJoAOM08/85RkptVIJqXatr0zAiX90z/F0jsFB3SQk:svRwdG2NcOMjUfkptVxXaB0zj0yjoB2

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks