General

  • Target

    Built.exe

  • Size

    6.9MB

  • Sample

    241029-29qvvszrfz

  • MD5

    1ccfbdc8a0380d4b6681755b089c82a2

  • SHA1

    4dd58cc538ca5fc1ee6fa8d3314eeee7900139db

  • SHA256

    59a2b9c19abda37252813af4b4d68529d638f8ec79e61d1a9a168b51d3a3d016

  • SHA512

    89a44223da746c56e63bec2dfda94be9c225eb99acd4d13c79b9c64d5de6edd3aa1ba043719407eb18918401712b88237da90e3f331ba92ae36c5f2c1a50e6d9

  • SSDEEP

    98304:x9DjWM8JEE1FVf2xamaHl3Ne4i3Tf2PkOpfW9hZMMoVmkzhxIdfXeRpYRJJcGhEp:x90/f2MeNTfm/pf+xk4dWRpmrbW3jmrU

Malware Config

Targets

    • Target

      Built.exe

    • Size

      6.9MB

    • MD5

      1ccfbdc8a0380d4b6681755b089c82a2

    • SHA1

      4dd58cc538ca5fc1ee6fa8d3314eeee7900139db

    • SHA256

      59a2b9c19abda37252813af4b4d68529d638f8ec79e61d1a9a168b51d3a3d016

    • SHA512

      89a44223da746c56e63bec2dfda94be9c225eb99acd4d13c79b9c64d5de6edd3aa1ba043719407eb18918401712b88237da90e3f331ba92ae36c5f2c1a50e6d9

    • SSDEEP

      98304:x9DjWM8JEE1FVf2xamaHl3Ne4i3Tf2PkOpfW9hZMMoVmkzhxIdfXeRpYRJJcGhEp:x90/f2MeNTfm/pf+xk4dWRpmrbW3jmrU

    • Command and Scripting Interpreter: PowerShell

      Using powershell.exe command.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks