General

  • Target

    ae2985b30cb50d77a9296ad84f7ae4e67b6002c6f3514cb8937045b25128708cN

  • Size

    2.6MB

  • Sample

    241027-w7r29aykc1

  • MD5

    e8977f2970f898d11d1bd80fde665410

  • SHA1

    c6340796b48ad3f70398772541be7bdaf2300246

  • SHA256

    ae2985b30cb50d77a9296ad84f7ae4e67b6002c6f3514cb8937045b25128708c

  • SHA512

    9608cc16a9ec383bd93a7ea0a76296901803577235ef5d6f9b722c1321071b131684a673f39ab357fad86b315ad3236f27112099c7f47de59696c8e6ea6ebdf7

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bS:sxX7QnxrloE5dpUp6b

Malware Config

Targets

    • Target

      ae2985b30cb50d77a9296ad84f7ae4e67b6002c6f3514cb8937045b25128708cN

    • Size

      2.6MB

    • MD5

      e8977f2970f898d11d1bd80fde665410

    • SHA1

      c6340796b48ad3f70398772541be7bdaf2300246

    • SHA256

      ae2985b30cb50d77a9296ad84f7ae4e67b6002c6f3514cb8937045b25128708c

    • SHA512

      9608cc16a9ec383bd93a7ea0a76296901803577235ef5d6f9b722c1321071b131684a673f39ab357fad86b315ad3236f27112099c7f47de59696c8e6ea6ebdf7

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bS:sxX7QnxrloE5dpUp6b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks