General

  • Target

    dc7ececb3348f1e20d0f1d4649dfeb4ffbaa6e2d216ed58b8e07e82728b56f58N

  • Size

    1.1MB

  • Sample

    241027-wd8g5sxpem

  • MD5

    731f3c5cba286d43ba7f23cc47320540

  • SHA1

    9a7d32bebd262668069ab8e1a46e9fc1ac71ebe0

  • SHA256

    dc7ececb3348f1e20d0f1d4649dfeb4ffbaa6e2d216ed58b8e07e82728b56f58

  • SHA512

    da05677049fb10509a11c85093a25b6efb6a89fbedd5c062cb146d78c50d2e248bb24ff7e549bdf764c39bd173f7c09e29208339aafff559eb4f47e2f52f27d6

  • SSDEEP

    24576:KLioLF2KLvgvFnQ+3pmcVKeQ2l8np2vUB7w41qPbaaiQ1z74a:KLzLMAovthm2l8nUvYtEbaaiQ1zz

Malware Config

Targets

    • Target

      dc7ececb3348f1e20d0f1d4649dfeb4ffbaa6e2d216ed58b8e07e82728b56f58N

    • Size

      1.1MB

    • MD5

      731f3c5cba286d43ba7f23cc47320540

    • SHA1

      9a7d32bebd262668069ab8e1a46e9fc1ac71ebe0

    • SHA256

      dc7ececb3348f1e20d0f1d4649dfeb4ffbaa6e2d216ed58b8e07e82728b56f58

    • SHA512

      da05677049fb10509a11c85093a25b6efb6a89fbedd5c062cb146d78c50d2e248bb24ff7e549bdf764c39bd173f7c09e29208339aafff559eb4f47e2f52f27d6

    • SSDEEP

      24576:KLioLF2KLvgvFnQ+3pmcVKeQ2l8np2vUB7w41qPbaaiQ1z74a:KLzLMAovthm2l8nUvYtEbaaiQ1zz

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks