General

  • Target

    0bcca80afd0863b07d6d789338db54688153c238a1245cf9916c54c058430230.exe

  • Size

    204KB

  • Sample

    241107-sefa7sxjal

  • MD5

    6dd28ccd10bd6f32007dad42edf29990

  • SHA1

    a424eb83528629b33c11a9e0fa77918701c3f4e6

  • SHA256

    0bcca80afd0863b07d6d789338db54688153c238a1245cf9916c54c058430230

  • SHA512

    a5c795c470beaf5f386739f21e4f940a982bab976f2744b9465f2321cf6942ad773b552c459bc0da73809d71e2e1e9f35760c77957f3b97c30b4adf995d4254d

  • SSDEEP

    6144:vDKW1Lgbdl0TBBvjc/fxuYXtRiiWZ5GVTq2:rh1Lk70TnvjcQCRtWfB2

Malware Config

Targets

    • Target

      0bcca80afd0863b07d6d789338db54688153c238a1245cf9916c54c058430230.exe

    • Size

      204KB

    • MD5

      6dd28ccd10bd6f32007dad42edf29990

    • SHA1

      a424eb83528629b33c11a9e0fa77918701c3f4e6

    • SHA256

      0bcca80afd0863b07d6d789338db54688153c238a1245cf9916c54c058430230

    • SHA512

      a5c795c470beaf5f386739f21e4f940a982bab976f2744b9465f2321cf6942ad773b552c459bc0da73809d71e2e1e9f35760c77957f3b97c30b4adf995d4254d

    • SSDEEP

      6144:vDKW1Lgbdl0TBBvjc/fxuYXtRiiWZ5GVTq2:rh1Lk70TnvjcQCRtWfB2

    • Reads user/profile data of local email clients

      Email clients store some user data on disk where infostealers will often target it.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses Microsoft Outlook profiles

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks