General

  • Target

    a6ee8368fb0a0a47b9a045704b8bc98c1bbb8dfbb0a714c22d5f50cd5a9a161cN

  • Size

    1.6MB

  • Sample

    241027-wsz5bayjbt

  • MD5

    17dbebebed6ad3584416929830871730

  • SHA1

    fde07df164f7946129b184f62d5174443dd71739

  • SHA256

    a6ee8368fb0a0a47b9a045704b8bc98c1bbb8dfbb0a714c22d5f50cd5a9a161c

  • SHA512

    983d69cea974bbe53126080ffaaad85e032216b2b7b551bafef8f08e78eea3048d77b982c5fa8a26c0ba50e0e372930eec91f11e854088d702e88a20ef2c1b2a

  • SSDEEP

    24576:v3sd9CHKy7GZ8EQkbvK8N3t3QVkLhoo+SVfhl2/:/sd9CHKya6ErvL73RLSo+2fhl

Malware Config

Targets

    • Target

      a6ee8368fb0a0a47b9a045704b8bc98c1bbb8dfbb0a714c22d5f50cd5a9a161cN

    • Size

      1.6MB

    • MD5

      17dbebebed6ad3584416929830871730

    • SHA1

      fde07df164f7946129b184f62d5174443dd71739

    • SHA256

      a6ee8368fb0a0a47b9a045704b8bc98c1bbb8dfbb0a714c22d5f50cd5a9a161c

    • SHA512

      983d69cea974bbe53126080ffaaad85e032216b2b7b551bafef8f08e78eea3048d77b982c5fa8a26c0ba50e0e372930eec91f11e854088d702e88a20ef2c1b2a

    • SSDEEP

      24576:v3sd9CHKy7GZ8EQkbvK8N3t3QVkLhoo+SVfhl2/:/sd9CHKya6ErvL73RLSo+2fhl

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks