General

  • Target

    acd4eedb6c2cc349bba703c30268acea67eafa7e5a6d7e07005bf5ccb624b568N

  • Size

    98KB

  • Sample

    241031-c4lxaaxgpf

  • MD5

    cb410dcc4cade0a487fb85f90d6e65b0

  • SHA1

    4e6b4d6222d9b36bebc324ccdd31813e95636a60

  • SHA256

    acd4eedb6c2cc349bba703c30268acea67eafa7e5a6d7e07005bf5ccb624b568

  • SHA512

    a71781f8497050510abe97736f681b04e6e06b8fead32c60835f624c077371e75daa93ea90f63b9b7f2d02107971d4349aa705d406915bce23a9eb5e5d1d57e1

  • SSDEEP

    1536:Jy6JHfRr4vkK/sTZSGJcXaDNUjVa51UysWqEdU9dldSGyBkch:E6FfREvkgsTv6qDNUgzU7usKGuks

Malware Config

Targets

    • Target

      acd4eedb6c2cc349bba703c30268acea67eafa7e5a6d7e07005bf5ccb624b568N

    • Size

      98KB

    • MD5

      cb410dcc4cade0a487fb85f90d6e65b0

    • SHA1

      4e6b4d6222d9b36bebc324ccdd31813e95636a60

    • SHA256

      acd4eedb6c2cc349bba703c30268acea67eafa7e5a6d7e07005bf5ccb624b568

    • SHA512

      a71781f8497050510abe97736f681b04e6e06b8fead32c60835f624c077371e75daa93ea90f63b9b7f2d02107971d4349aa705d406915bce23a9eb5e5d1d57e1

    • SSDEEP

      1536:Jy6JHfRr4vkK/sTZSGJcXaDNUjVa51UysWqEdU9dldSGyBkch:E6FfREvkgsTv6qDNUgzU7usKGuks

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks