General

  • Target

    iGust Optimizer V3.exe

  • Size

    97.0MB

  • Sample

    241027-rxlp9swman

  • MD5

    1fc8d393db9228ea9f56887b830c9bff

  • SHA1

    07cfd75dcf75859c1e47dd45f83969f153869bdf

  • SHA256

    c68df09cab4902457940c3cab4bf0ed2a5ead6e6645df336405214c1614fbf53

  • SHA512

    30a754ae52d5ef7f907d2a843704db96e9ce92c031165bc4104e36992caf054a4c9058e80f9950ebc8c5e900620004ca3d4d3a915aee36c0c9a0adaafec8bfce

  • SSDEEP

    3145728:agYRPSC++6y9Jk/cOk9/fBqsDSzyTlHV5FTenY9c:axaC4y9O/cOkbIzy5Fq+c

Malware Config

Targets

    • Target

      iGust Optimizer V3.exe

    • Size

      97.0MB

    • MD5

      1fc8d393db9228ea9f56887b830c9bff

    • SHA1

      07cfd75dcf75859c1e47dd45f83969f153869bdf

    • SHA256

      c68df09cab4902457940c3cab4bf0ed2a5ead6e6645df336405214c1614fbf53

    • SHA512

      30a754ae52d5ef7f907d2a843704db96e9ce92c031165bc4104e36992caf054a4c9058e80f9950ebc8c5e900620004ca3d4d3a915aee36c0c9a0adaafec8bfce

    • SSDEEP

      3145728:agYRPSC++6y9Jk/cOk9/fBqsDSzyTlHV5FTenY9c:axaC4y9O/cOkbIzy5Fq+c

    • Disables service(s)

    • Stops running service(s)

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Power Settings

      powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.

MITRE ATT&CK Enterprise v15

Tasks