General

  • Target

    20164766a73c53a4df03e1a28c10c560a36bd8446cb48f5684f253108c698ff7N

  • Size

    2.6MB

  • Sample

    241108-1nb9xa1amk

  • MD5

    964c9e7e9a42f717b81208fda27b8cf0

  • SHA1

    1168182798cc4722f0ffa6d7d98fcdff93f4a950

  • SHA256

    20164766a73c53a4df03e1a28c10c560a36bd8446cb48f5684f253108c698ff7

  • SHA512

    bc0a731fe5e1aa2c3b9110419aac027f81bc306617214036d573fa573b5f1e702821815ca156203db0acf1d81e5bf27cb05d00157ac19b2861cbcd4cde9a226a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB1B/bS:sxX7QnxrloE5dpUpKb

Malware Config

Targets

    • Target

      20164766a73c53a4df03e1a28c10c560a36bd8446cb48f5684f253108c698ff7N

    • Size

      2.6MB

    • MD5

      964c9e7e9a42f717b81208fda27b8cf0

    • SHA1

      1168182798cc4722f0ffa6d7d98fcdff93f4a950

    • SHA256

      20164766a73c53a4df03e1a28c10c560a36bd8446cb48f5684f253108c698ff7

    • SHA512

      bc0a731fe5e1aa2c3b9110419aac027f81bc306617214036d573fa573b5f1e702821815ca156203db0acf1d81e5bf27cb05d00157ac19b2861cbcd4cde9a226a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB1B/bS:sxX7QnxrloE5dpUpKb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks