General

  • Target

    83d11847a43c7f2687237969dec4c5d10fe8e085f3a7cfa89c463e9109a2bfc9N

  • Size

    2.6MB

  • Sample

    241026-f5w1esxran

  • MD5

    d34859cabe562de609c3403f6c86dbd0

  • SHA1

    51b4ea1c371c94c85e5960799553c99c8e621877

  • SHA256

    83d11847a43c7f2687237969dec4c5d10fe8e085f3a7cfa89c463e9109a2bfc9

  • SHA512

    627c54761884cb1b0661f3e8e5efb631f7864d5ac59957e07faa4b489f80171bd79877fb2b20b50bab086b79b20c618be19dd6080dc1ba411596ea35d639ba30

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bS:sxX7QnxrloE5dpUpcb

Malware Config

Targets

    • Target

      83d11847a43c7f2687237969dec4c5d10fe8e085f3a7cfa89c463e9109a2bfc9N

    • Size

      2.6MB

    • MD5

      d34859cabe562de609c3403f6c86dbd0

    • SHA1

      51b4ea1c371c94c85e5960799553c99c8e621877

    • SHA256

      83d11847a43c7f2687237969dec4c5d10fe8e085f3a7cfa89c463e9109a2bfc9

    • SHA512

      627c54761884cb1b0661f3e8e5efb631f7864d5ac59957e07faa4b489f80171bd79877fb2b20b50bab086b79b20c618be19dd6080dc1ba411596ea35d639ba30

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bS:sxX7QnxrloE5dpUpcb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks