General

  • Target

    418475080feaec7ce594333fd94450c46fe66cb88f9aafc2a7d81b7583215f91N

  • Size

    2.6MB

  • Sample

    241026-gdb2lsyjbk

  • MD5

    c2e82171c9765c3141afae42a7932a30

  • SHA1

    56f5e4a0ff00dfe7cd1f33e557c549e205e015b5

  • SHA256

    418475080feaec7ce594333fd94450c46fe66cb88f9aafc2a7d81b7583215f91

  • SHA512

    1aeae6d29ccf6157588576b725bee683be5a1774e416b0a9f67e478f7270ffc1b4a8fad04f28840c5ebf9dfe8610bc9037cc95e873c209a0bc6dc61cf66dc34f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBHB/bSq:sxX7QnxrloE5dpUpYbV

Malware Config

Targets

    • Target

      418475080feaec7ce594333fd94450c46fe66cb88f9aafc2a7d81b7583215f91N

    • Size

      2.6MB

    • MD5

      c2e82171c9765c3141afae42a7932a30

    • SHA1

      56f5e4a0ff00dfe7cd1f33e557c549e205e015b5

    • SHA256

      418475080feaec7ce594333fd94450c46fe66cb88f9aafc2a7d81b7583215f91

    • SHA512

      1aeae6d29ccf6157588576b725bee683be5a1774e416b0a9f67e478f7270ffc1b4a8fad04f28840c5ebf9dfe8610bc9037cc95e873c209a0bc6dc61cf66dc34f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBHB/bSq:sxX7QnxrloE5dpUpYbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks