General

  • Target

    f75c7e774490d33c9f7d14ac59eecf6a1299a4f99b47f3ce9ab8307ea92c62d9N

  • Size

    2.2MB

  • Sample

    241103-rjf8mayncl

  • MD5

    e0203733b189987a083a351079d50390

  • SHA1

    322762ffd47a31c322ab8368919f143ad246d7c3

  • SHA256

    f75c7e774490d33c9f7d14ac59eecf6a1299a4f99b47f3ce9ab8307ea92c62d9

  • SHA512

    f5682305d75ea926908f797460409c00143b07d8bf21f993776024ffa8ea60a7b87ffb98a5c1055dcf33fa975058147ee47f5596a9c9efe4513eb581d12f3478

  • SSDEEP

    24576:4tTjZrInNUUlX6S4CrF4VTH62rtJNxlf/8D9+qNgzQJWDqVT86sSoPiPSu87O:625lXsCx49Bff/1QQDqrsS56uYO

Malware Config

Targets

    • Target

      f75c7e774490d33c9f7d14ac59eecf6a1299a4f99b47f3ce9ab8307ea92c62d9N

    • Size

      2.2MB

    • MD5

      e0203733b189987a083a351079d50390

    • SHA1

      322762ffd47a31c322ab8368919f143ad246d7c3

    • SHA256

      f75c7e774490d33c9f7d14ac59eecf6a1299a4f99b47f3ce9ab8307ea92c62d9

    • SHA512

      f5682305d75ea926908f797460409c00143b07d8bf21f993776024ffa8ea60a7b87ffb98a5c1055dcf33fa975058147ee47f5596a9c9efe4513eb581d12f3478

    • SSDEEP

      24576:4tTjZrInNUUlX6S4CrF4VTH62rtJNxlf/8D9+qNgzQJWDqVT86sSoPiPSu87O:625lXsCx49Bff/1QQDqrsS56uYO

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses Microsoft Outlook profiles

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks