General

  • Target

    3b58654634f3789094bd7b18af2da5ed0ffa99522af2c3a697924ae7b99010eeN

  • Size

    2.6MB

  • Sample

    241027-w9bs2s1ajd

  • MD5

    b0e0360b5bfcbc1d459daf9996bbe650

  • SHA1

    40eccf822837609460e9b0cd89865adf95f0e4e5

  • SHA256

    3b58654634f3789094bd7b18af2da5ed0ffa99522af2c3a697924ae7b99010ee

  • SHA512

    74276ee5bf0aece3f6e271a6e9af2e2f0b8cc6f063e614b6704394101cc79d2124867055a443039a441b05b8b83175e4c8a69ebd886711d9f9c5724ae718e398

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bSq:sxX7QnxrloE5dpUp5bV

Malware Config

Targets

    • Target

      3b58654634f3789094bd7b18af2da5ed0ffa99522af2c3a697924ae7b99010eeN

    • Size

      2.6MB

    • MD5

      b0e0360b5bfcbc1d459daf9996bbe650

    • SHA1

      40eccf822837609460e9b0cd89865adf95f0e4e5

    • SHA256

      3b58654634f3789094bd7b18af2da5ed0ffa99522af2c3a697924ae7b99010ee

    • SHA512

      74276ee5bf0aece3f6e271a6e9af2e2f0b8cc6f063e614b6704394101cc79d2124867055a443039a441b05b8b83175e4c8a69ebd886711d9f9c5724ae718e398

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bSq:sxX7QnxrloE5dpUp5bV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks