General

  • Target

    06addf1695faa4b9644dd0cd6b551b7190bd9a150c0306f2c44ac4ac8c80bc12N

  • Size

    2.6MB

  • Sample

    241108-1xljyatkfp

  • MD5

    5d793986e055bf27b3397a43b07db2e0

  • SHA1

    2bdeb33c4dbb5bd946919ff763caf2a6565cb520

  • SHA256

    06addf1695faa4b9644dd0cd6b551b7190bd9a150c0306f2c44ac4ac8c80bc12

  • SHA512

    ff8cce86d8f6db3885257ca4049570bbf01109a2eea7a8c7c6b27dc98949093c3787b3f0ef2e57050bcc350b1ee26267ba3fe88aa1011c101d0ac7f5b2ba3e74

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSq:sxX7QnxrloE5dpUpwbV

Malware Config

Targets

    • Target

      06addf1695faa4b9644dd0cd6b551b7190bd9a150c0306f2c44ac4ac8c80bc12N

    • Size

      2.6MB

    • MD5

      5d793986e055bf27b3397a43b07db2e0

    • SHA1

      2bdeb33c4dbb5bd946919ff763caf2a6565cb520

    • SHA256

      06addf1695faa4b9644dd0cd6b551b7190bd9a150c0306f2c44ac4ac8c80bc12

    • SHA512

      ff8cce86d8f6db3885257ca4049570bbf01109a2eea7a8c7c6b27dc98949093c3787b3f0ef2e57050bcc350b1ee26267ba3fe88aa1011c101d0ac7f5b2ba3e74

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSq:sxX7QnxrloE5dpUpwbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks