General

  • Target

    d5b8b5c5d78101ece470da1821c702398bdd241f2cf2c602d7ec33ce61052e17N

  • Size

    1.2MB

  • Sample

    241027-w37bdaykat

  • MD5

    e6c273ed92b4bceff0508702aa0d7a90

  • SHA1

    01b6b105878a3c95d5432bd3f020c23a83dfaf62

  • SHA256

    d5b8b5c5d78101ece470da1821c702398bdd241f2cf2c602d7ec33ce61052e17

  • SHA512

    9d4b2f5c1999ee2577058c44bfff9e4a199f6c22b2dc7d9e373277e69e5abab38b9a4a28f16e0939b0389579aff11a5e6126aa3a0ef3d7b7d9952e2c0dd16a10

  • SSDEEP

    12288:Vcz2DWUHMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:Gz2DWrSkQ/7Gb8NLEbeZ

Malware Config

Targets

    • Target

      d5b8b5c5d78101ece470da1821c702398bdd241f2cf2c602d7ec33ce61052e17N

    • Size

      1.2MB

    • MD5

      e6c273ed92b4bceff0508702aa0d7a90

    • SHA1

      01b6b105878a3c95d5432bd3f020c23a83dfaf62

    • SHA256

      d5b8b5c5d78101ece470da1821c702398bdd241f2cf2c602d7ec33ce61052e17

    • SHA512

      9d4b2f5c1999ee2577058c44bfff9e4a199f6c22b2dc7d9e373277e69e5abab38b9a4a28f16e0939b0389579aff11a5e6126aa3a0ef3d7b7d9952e2c0dd16a10

    • SSDEEP

      12288:Vcz2DWUHMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:Gz2DWrSkQ/7Gb8NLEbeZ

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks