General

  • Target

    2024-11-05_9fbfab18e08722ccf6c263a2bd3eedfa_datper_trigona

  • Size

    342KB

  • Sample

    241105-h9an4azkhk

  • MD5

    9fbfab18e08722ccf6c263a2bd3eedfa

  • SHA1

    507a5c5726777e543cf18f366aa08b4148b427a0

  • SHA256

    3c3dc944357a51546a0b0dc45f1532f7bdf357baf03a83e1ecb8a402d305c52b

  • SHA512

    415909f8fe66bf6e45bea36caa12d4bc8343f4218d4887d6918f5a52059a471672c5c89f0c43b0a6f3b9c0b9d553eb6b22a61468463f8037d11f0fac4e678520

  • SSDEEP

    6144:Gx2QdiglMFGfzIBeZO8Wf2cMROCO/xZqqDLuz+4pQoL27aR9:GAQsgScEydOCJqnuq4z2mR9

Malware Config

Targets

    • Target

      2024-11-05_9fbfab18e08722ccf6c263a2bd3eedfa_datper_trigona

    • Size

      342KB

    • MD5

      9fbfab18e08722ccf6c263a2bd3eedfa

    • SHA1

      507a5c5726777e543cf18f366aa08b4148b427a0

    • SHA256

      3c3dc944357a51546a0b0dc45f1532f7bdf357baf03a83e1ecb8a402d305c52b

    • SHA512

      415909f8fe66bf6e45bea36caa12d4bc8343f4218d4887d6918f5a52059a471672c5c89f0c43b0a6f3b9c0b9d553eb6b22a61468463f8037d11f0fac4e678520

    • SSDEEP

      6144:Gx2QdiglMFGfzIBeZO8Wf2cMROCO/xZqqDLuz+4pQoL27aR9:GAQsgScEydOCJqnuq4z2mR9

    • Credentials from Password Stores: Windows Credential Manager

      Suspicious access to Credentials History.

    • Drops startup file

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks