General

  • Target

    58f05a6737521572818cd1f75e222c3a2e2074804015cfd20478ce172f7430b5

  • Size

    1.5MB

  • Sample

    241108-21fcrs1hqg

  • MD5

    fc79808a43907451d0691d1b7b8fef4d

  • SHA1

    27fbe3ae11151c696e977f6bc1a48e96b2c27638

  • SHA256

    58f05a6737521572818cd1f75e222c3a2e2074804015cfd20478ce172f7430b5

  • SHA512

    f6920e1ed68d235d6b6995eb68876be3b0df6a0a4b04d4491c9aab36996097612dd525ffd8d59603ebc06728fa211b6e43483caa580d2f323fd266010214480f

  • SSDEEP

    12288:LwnXp/66ux+ivhEFQt3n5jiB3x4WslePAp9teeTKpU8/xX+T+p61:LcZ/TuYivOa5jA2nl+AbTKpdN+Wi

Malware Config

Targets

    • Target

      58f05a6737521572818cd1f75e222c3a2e2074804015cfd20478ce172f7430b5

    • Size

      1.5MB

    • MD5

      fc79808a43907451d0691d1b7b8fef4d

    • SHA1

      27fbe3ae11151c696e977f6bc1a48e96b2c27638

    • SHA256

      58f05a6737521572818cd1f75e222c3a2e2074804015cfd20478ce172f7430b5

    • SHA512

      f6920e1ed68d235d6b6995eb68876be3b0df6a0a4b04d4491c9aab36996097612dd525ffd8d59603ebc06728fa211b6e43483caa580d2f323fd266010214480f

    • SSDEEP

      12288:LwnXp/66ux+ivhEFQt3n5jiB3x4WslePAp9teeTKpU8/xX+T+p61:LcZ/TuYivOa5jA2nl+AbTKpdN+Wi

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks