General

  • Target

    ca4a96f110dde187121b9a168aebbf30cfc41be82fbfabf07e5bddaa5178a5b6N

  • Size

    2.6MB

  • Sample

    241108-26gg1ssaqc

  • MD5

    e2c915908dc344b7f41f097704185160

  • SHA1

    3302b95b46ed698840f8a7900f470e6a372cc399

  • SHA256

    ca4a96f110dde187121b9a168aebbf30cfc41be82fbfabf07e5bddaa5178a5b6

  • SHA512

    35c58c22505af10c0197bda4782d062eb2a4188595b2fef1fbe08050667e625c144526f19ea3176ed819e8b85ab4421c5da6dea877dca137f839311a58701ee9

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBnB/bS:sxX7QnxrloE5dpUp0b

Malware Config

Targets

    • Target

      ca4a96f110dde187121b9a168aebbf30cfc41be82fbfabf07e5bddaa5178a5b6N

    • Size

      2.6MB

    • MD5

      e2c915908dc344b7f41f097704185160

    • SHA1

      3302b95b46ed698840f8a7900f470e6a372cc399

    • SHA256

      ca4a96f110dde187121b9a168aebbf30cfc41be82fbfabf07e5bddaa5178a5b6

    • SHA512

      35c58c22505af10c0197bda4782d062eb2a4188595b2fef1fbe08050667e625c144526f19ea3176ed819e8b85ab4421c5da6dea877dca137f839311a58701ee9

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBnB/bS:sxX7QnxrloE5dpUp0b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks