General

  • Target

    48e9eff7bf6caa45a163fb99952c427c48fefa0e631ef12e3ffad79a14f739e6

  • Size

    3.8MB

  • Sample

    241027-wz8p2axrcr

  • MD5

    d37782a877dc0d1b8d9a2818d855384c

  • SHA1

    e695f48129eae8e695e33982ec730a9c8480be0a

  • SHA256

    48e9eff7bf6caa45a163fb99952c427c48fefa0e631ef12e3ffad79a14f739e6

  • SHA512

    0795d465f668c4a5290f7ca0d97107379bd20d25bd45c8a4dda90b0566314187fd838a2ff9ec3844dc557683da2611ab8d96f34b6cb9ad45c51a7f51371bb6d4

  • SSDEEP

    98304:XdV5gl+udWkPANymW1FDUggBFfMBdfFLOAkGkzdnEVomFHKnPx/iyB:XdVOpbAqDUggBFyFLOyomFHKnPJ

Malware Config

Targets

    • Target

      48e9eff7bf6caa45a163fb99952c427c48fefa0e631ef12e3ffad79a14f739e6

    • Size

      3.8MB

    • MD5

      d37782a877dc0d1b8d9a2818d855384c

    • SHA1

      e695f48129eae8e695e33982ec730a9c8480be0a

    • SHA256

      48e9eff7bf6caa45a163fb99952c427c48fefa0e631ef12e3ffad79a14f739e6

    • SHA512

      0795d465f668c4a5290f7ca0d97107379bd20d25bd45c8a4dda90b0566314187fd838a2ff9ec3844dc557683da2611ab8d96f34b6cb9ad45c51a7f51371bb6d4

    • SSDEEP

      98304:XdV5gl+udWkPANymW1FDUggBFfMBdfFLOAkGkzdnEVomFHKnPx/iyB:XdVOpbAqDUggBFyFLOyomFHKnPJ

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks