General

  • Target

    05dcb361f06a96d4972eabbd3190f59291037caa2ee1b4441d8840216cf64f94N

  • Size

    2.6MB

  • Sample

    241108-1a2mmszgkp

  • MD5

    a651880602fe44902a2e66c75cd3f8a0

  • SHA1

    bea900dfe841913afbc2f78c4f3f1d7ad6e3d211

  • SHA256

    05dcb361f06a96d4972eabbd3190f59291037caa2ee1b4441d8840216cf64f94

  • SHA512

    9e813b38244b1073be6416c52fc62d24baeaf779b648e499a3c70ff9342b5d20f589005ba052ae52f3d94e67020828954f0b2dbf4da068591a9c6cfc257d2914

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bS:sxX7QnxrloE5dpUp+b

Malware Config

Targets

    • Target

      05dcb361f06a96d4972eabbd3190f59291037caa2ee1b4441d8840216cf64f94N

    • Size

      2.6MB

    • MD5

      a651880602fe44902a2e66c75cd3f8a0

    • SHA1

      bea900dfe841913afbc2f78c4f3f1d7ad6e3d211

    • SHA256

      05dcb361f06a96d4972eabbd3190f59291037caa2ee1b4441d8840216cf64f94

    • SHA512

      9e813b38244b1073be6416c52fc62d24baeaf779b648e499a3c70ff9342b5d20f589005ba052ae52f3d94e67020828954f0b2dbf4da068591a9c6cfc257d2914

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bS:sxX7QnxrloE5dpUp+b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks