General

  • Target

    12ca533a8eb1932d431f3b33c4754d6c45faea4648909fdb14b7a596142bdb9aN

  • Size

    2.6MB

  • Sample

    241108-1ytlya1cjp

  • MD5

    8055643b72c2a9b72f2499e0154d2650

  • SHA1

    504758b0653b2aca9a11866017e694311289ded0

  • SHA256

    12ca533a8eb1932d431f3b33c4754d6c45faea4648909fdb14b7a596142bdb9a

  • SHA512

    b4cca2e42cdfe0e78b40b2f580a1a4641d7fe00ce5906c80332ce4acbefe70d89b51d19834982828727eb26c002bf601c04bae9583cee9d92e0356d9207a2c02

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUpMb

Malware Config

Targets

    • Target

      12ca533a8eb1932d431f3b33c4754d6c45faea4648909fdb14b7a596142bdb9aN

    • Size

      2.6MB

    • MD5

      8055643b72c2a9b72f2499e0154d2650

    • SHA1

      504758b0653b2aca9a11866017e694311289ded0

    • SHA256

      12ca533a8eb1932d431f3b33c4754d6c45faea4648909fdb14b7a596142bdb9a

    • SHA512

      b4cca2e42cdfe0e78b40b2f580a1a4641d7fe00ce5906c80332ce4acbefe70d89b51d19834982828727eb26c002bf601c04bae9583cee9d92e0356d9207a2c02

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUpMb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks