General

  • Target

    f53c5e5907ae5a376e8722783cf5d8799e5cc49a5098082fb6d89165f8d8a118N

  • Size

    2.6MB

  • Sample

    241031-b2rt3sxpbr

  • MD5

    e5a1468d82040b6eddd805437b23c370

  • SHA1

    aa3fc096d7a19593fe659f98bec0ec90b11305b1

  • SHA256

    f53c5e5907ae5a376e8722783cf5d8799e5cc49a5098082fb6d89165f8d8a118

  • SHA512

    d8cb99fc42ab99ff966d0b76df8e1759273dfa6f782b5025753d5c7095965f6fd9d7a381a90b7381a1dd641bf88bca99b31df90b74728d99ab5ac650409a8bb6

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBzB/bS:sxX7QnxrloE5dpUpkb

Malware Config

Targets

    • Target

      f53c5e5907ae5a376e8722783cf5d8799e5cc49a5098082fb6d89165f8d8a118N

    • Size

      2.6MB

    • MD5

      e5a1468d82040b6eddd805437b23c370

    • SHA1

      aa3fc096d7a19593fe659f98bec0ec90b11305b1

    • SHA256

      f53c5e5907ae5a376e8722783cf5d8799e5cc49a5098082fb6d89165f8d8a118

    • SHA512

      d8cb99fc42ab99ff966d0b76df8e1759273dfa6f782b5025753d5c7095965f6fd9d7a381a90b7381a1dd641bf88bca99b31df90b74728d99ab5ac650409a8bb6

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBzB/bS:sxX7QnxrloE5dpUpkb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks