General

  • Target

    92946490872c0128c1c00890485992f1db7debcc243dce4b33c91cdf9749d530N

  • Size

    2.6MB

  • Sample

    241031-b4trfswhkm

  • MD5

    a75d659340b6e5beac09fb20b2b71180

  • SHA1

    ebc30187aa68ed2f91e1d1848ec87b3a1a99bddd

  • SHA256

    92946490872c0128c1c00890485992f1db7debcc243dce4b33c91cdf9749d530

  • SHA512

    f3e9ee8612eef0ff78bf5f74674de2493f71479b572ced1a799d406e454c80fc58ddeb678b46d3c43dd3c2bd8ff9ef44b8c42b65336bb9f425dff92fc285c63e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBCB/bS:sxX7QnxrloE5dpUpdb

Malware Config

Targets

    • Target

      92946490872c0128c1c00890485992f1db7debcc243dce4b33c91cdf9749d530N

    • Size

      2.6MB

    • MD5

      a75d659340b6e5beac09fb20b2b71180

    • SHA1

      ebc30187aa68ed2f91e1d1848ec87b3a1a99bddd

    • SHA256

      92946490872c0128c1c00890485992f1db7debcc243dce4b33c91cdf9749d530

    • SHA512

      f3e9ee8612eef0ff78bf5f74674de2493f71479b572ced1a799d406e454c80fc58ddeb678b46d3c43dd3c2bd8ff9ef44b8c42b65336bb9f425dff92fc285c63e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBCB/bS:sxX7QnxrloE5dpUpdb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks