General
-
Target
45361a18f1e488c2b34bf83c124289b42b49726d23555e2822ba0996df28cb71
-
Size
3.1MB
-
Sample
241031-j9lxssvelm
-
MD5
b0641715831e49b3816772d4adcda114
-
SHA1
c06ce54a9d3c86108b317ea189235ffbe4ab6bb1
-
SHA256
45361a18f1e488c2b34bf83c124289b42b49726d23555e2822ba0996df28cb71
-
SHA512
d6bcc2134bb80dc8af17782639bc362d7f02ede390ce71f8cb8d2e1117325121c96294cf4236e2fc2bab69d730eeb6f9de92d89fbd3733dbab3ef0955cd249b4
-
SSDEEP
98304:GAyXe7ykegiTNpjQpSI14jSKQoDXAy0YbJ31nu2Cmh:CXe7tiTHjY4jS1sXA/mJ5u2nh
Malware Config
Targets
-
-
Target
45361a18f1e488c2b34bf83c124289b42b49726d23555e2822ba0996df28cb71
-
Size
3.1MB
-
MD5
b0641715831e49b3816772d4adcda114
-
SHA1
c06ce54a9d3c86108b317ea189235ffbe4ab6bb1
-
SHA256
45361a18f1e488c2b34bf83c124289b42b49726d23555e2822ba0996df28cb71
-
SHA512
d6bcc2134bb80dc8af17782639bc362d7f02ede390ce71f8cb8d2e1117325121c96294cf4236e2fc2bab69d730eeb6f9de92d89fbd3733dbab3ef0955cd249b4
-
SSDEEP
98304:GAyXe7ykegiTNpjQpSI14jSKQoDXAy0YbJ31nu2Cmh:CXe7tiTHjY4jS1sXA/mJ5u2nh
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Subvert Trust Controls
1Install Root Certificate
1Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1