General

  • Target

    065c98e992ffff60b48b49a91c20cfe3ed80355e7230bb7e719ec2db8c20d7f7N

  • Size

    1.5MB

  • Sample

    241108-24ycra1mcy

  • MD5

    50e75836857b5c91400b2ee4191b2a00

  • SHA1

    982340f1203601dc3c6e278d33b5c0e8ee9eb1c2

  • SHA256

    065c98e992ffff60b48b49a91c20cfe3ed80355e7230bb7e719ec2db8c20d7f7

  • SHA512

    db4c2a79c60a1e05d1b575c085d21326d98a6478c1bcbaf5672ed87353931988cc43f38fb381dc69afcd34ee5e178c1952c51dd2478b58164b0cbe3084fb1a7f

  • SSDEEP

    24576:CBpDRmi78gkPXlyo0Gtjr6xVirnlBUKZ408vTZrX+lgdW:2NRmi78gkPX4o0GtjAiLlBUKubZrX+ld

Malware Config

Targets

    • Target

      065c98e992ffff60b48b49a91c20cfe3ed80355e7230bb7e719ec2db8c20d7f7N

    • Size

      1.5MB

    • MD5

      50e75836857b5c91400b2ee4191b2a00

    • SHA1

      982340f1203601dc3c6e278d33b5c0e8ee9eb1c2

    • SHA256

      065c98e992ffff60b48b49a91c20cfe3ed80355e7230bb7e719ec2db8c20d7f7

    • SHA512

      db4c2a79c60a1e05d1b575c085d21326d98a6478c1bcbaf5672ed87353931988cc43f38fb381dc69afcd34ee5e178c1952c51dd2478b58164b0cbe3084fb1a7f

    • SSDEEP

      24576:CBpDRmi78gkPXlyo0Gtjr6xVirnlBUKZ408vTZrX+lgdW:2NRmi78gkPX4o0GtjAiLlBUKubZrX+ld

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks