General

  • Target

    01fb133a8605929c3495d4619bbf9bc43485a59d6787be8faccc7312e942a4a3N

  • Size

    2.6MB

  • Sample

    241027-smpjvawpbq

  • MD5

    3747e0c319743d902c2e805f3650e330

  • SHA1

    a7c41b6339a908ae11b85bfe6738210d084a4a39

  • SHA256

    01fb133a8605929c3495d4619bbf9bc43485a59d6787be8faccc7312e942a4a3

  • SHA512

    98d5772d3dcdded000c2a275663c4d319e131d4230e910c4eb14617168246284ec34e26d9aedd1daa7bbb94c24b15bead5c4def4fa72fc3372d9a3fce8228c35

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBCB/bSq:sxX7QnxrloE5dpUp5bV

Malware Config

Targets

    • Target

      01fb133a8605929c3495d4619bbf9bc43485a59d6787be8faccc7312e942a4a3N

    • Size

      2.6MB

    • MD5

      3747e0c319743d902c2e805f3650e330

    • SHA1

      a7c41b6339a908ae11b85bfe6738210d084a4a39

    • SHA256

      01fb133a8605929c3495d4619bbf9bc43485a59d6787be8faccc7312e942a4a3

    • SHA512

      98d5772d3dcdded000c2a275663c4d319e131d4230e910c4eb14617168246284ec34e26d9aedd1daa7bbb94c24b15bead5c4def4fa72fc3372d9a3fce8228c35

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBCB/bSq:sxX7QnxrloE5dpUp5bV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks