General

  • Target

    6958b58f48d0c3e90e733eba366c0ead7e90f8ace80aff25884536b54d3e8048

  • Size

    577KB

  • Sample

    241026-fywfbaxqbm

  • MD5

    afb82271e04d2a0073e4e2a750fac715

  • SHA1

    81d1f5dd6577d5bd3c59c334a6845f4e2e2df9e1

  • SHA256

    6958b58f48d0c3e90e733eba366c0ead7e90f8ace80aff25884536b54d3e8048

  • SHA512

    a499430d02d1fbd05ef49c2ee58477815aa9361f028e914aaab419e7bf0a4d617eade94ba206307d621ec65751731cbb1d35f17e22d2baa15550bdbe34bab069

  • SSDEEP

    6144:fl+aX3LdE7cV3iwbAFRWAbd4nf0H05yqE6Hl0ChW0+ksllAXBu0lWGWUJJQ4t0BE:fl+ai7a3iwbihym2g7XO3LWUQfh4Co

Malware Config

Targets

    • Target

      6958b58f48d0c3e90e733eba366c0ead7e90f8ace80aff25884536b54d3e8048

    • Size

      577KB

    • MD5

      afb82271e04d2a0073e4e2a750fac715

    • SHA1

      81d1f5dd6577d5bd3c59c334a6845f4e2e2df9e1

    • SHA256

      6958b58f48d0c3e90e733eba366c0ead7e90f8ace80aff25884536b54d3e8048

    • SHA512

      a499430d02d1fbd05ef49c2ee58477815aa9361f028e914aaab419e7bf0a4d617eade94ba206307d621ec65751731cbb1d35f17e22d2baa15550bdbe34bab069

    • SSDEEP

      6144:fl+aX3LdE7cV3iwbAFRWAbd4nf0H05yqE6Hl0ChW0+ksllAXBu0lWGWUJJQ4t0BE:fl+ai7a3iwbihym2g7XO3LWUQfh4Co

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks