General

  • Target

    2fc3248cced5bae4d1c2bb741c24ee4f18f468163a582dd08ef3c4fcfae3ae03N

  • Size

    2.6MB

  • Sample

    241108-1a7tnayrhx

  • MD5

    a261178b78ae881310fe02ad50c81c50

  • SHA1

    2cd78e9a63b99246d86deacb38c9165b42ca6368

  • SHA256

    2fc3248cced5bae4d1c2bb741c24ee4f18f468163a582dd08ef3c4fcfae3ae03

  • SHA512

    d587eb303f238a9d29463514f24b23ad2b3d4b64701726df069102b222cb83f46aafef96e048c03ef5e032c2a4503a6468ccaa3c6b79feb6a717468454b2522e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSq:sxX7QnxrloE5dpUpmbV

Malware Config

Targets

    • Target

      2fc3248cced5bae4d1c2bb741c24ee4f18f468163a582dd08ef3c4fcfae3ae03N

    • Size

      2.6MB

    • MD5

      a261178b78ae881310fe02ad50c81c50

    • SHA1

      2cd78e9a63b99246d86deacb38c9165b42ca6368

    • SHA256

      2fc3248cced5bae4d1c2bb741c24ee4f18f468163a582dd08ef3c4fcfae3ae03

    • SHA512

      d587eb303f238a9d29463514f24b23ad2b3d4b64701726df069102b222cb83f46aafef96e048c03ef5e032c2a4503a6468ccaa3c6b79feb6a717468454b2522e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSq:sxX7QnxrloE5dpUpmbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks