General

  • Target

    code.bat

  • Size

    628B

  • Sample

    241101-ha8rvawnby

  • MD5

    f858ac0eeb9200f580c595812d4d88c1

  • SHA1

    6c89e7f56c0f6ff404fec7139fae739ac9941883

  • SHA256

    be3737d3f8dc1fe6abd904388a61e9605a4a3b6fb2f2ca54ed77cb7c9c602d93

  • SHA512

    8b30c11352e056901751ebc0abafb7e33986f11bf2764c18ddc007b64cd481628689733a9f3802e40796f0b0ed0ffcdeb41910163abffff30361c246a6d078a5

Malware Config

Targets

    • Target

      code.bat

    • Size

      628B

    • MD5

      f858ac0eeb9200f580c595812d4d88c1

    • SHA1

      6c89e7f56c0f6ff404fec7139fae739ac9941883

    • SHA256

      be3737d3f8dc1fe6abd904388a61e9605a4a3b6fb2f2ca54ed77cb7c9c602d93

    • SHA512

      8b30c11352e056901751ebc0abafb7e33986f11bf2764c18ddc007b64cd481628689733a9f3802e40796f0b0ed0ffcdeb41910163abffff30361c246a6d078a5

    • Credentials from Password Stores: Windows Credential Manager

      Suspicious access to Credentials History.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks