General

  • Target

    4517cd19808f9049f8b5dbbac15a3c2be53cc9249338432154af5c1a2d97d41aN

  • Size

    2.6MB

  • Sample

    241108-292x5asbmc

  • MD5

    09e59590edcd3f5696701d395b57e4c0

  • SHA1

    106854f79a73f5e62022a9545d7b4fb7b244012d

  • SHA256

    4517cd19808f9049f8b5dbbac15a3c2be53cc9249338432154af5c1a2d97d41a

  • SHA512

    e2ec36ecfd6e3aa6be9f50526498e4505f2ea05763750074edbe3b66e9add55d0dd958c04d46b8f1c324e9e358c4c4a885dba0db023061f062661f255ea9b4b6

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bS:sxX7QnxrloE5dpUpXb

Malware Config

Targets

    • Target

      4517cd19808f9049f8b5dbbac15a3c2be53cc9249338432154af5c1a2d97d41aN

    • Size

      2.6MB

    • MD5

      09e59590edcd3f5696701d395b57e4c0

    • SHA1

      106854f79a73f5e62022a9545d7b4fb7b244012d

    • SHA256

      4517cd19808f9049f8b5dbbac15a3c2be53cc9249338432154af5c1a2d97d41a

    • SHA512

      e2ec36ecfd6e3aa6be9f50526498e4505f2ea05763750074edbe3b66e9add55d0dd958c04d46b8f1c324e9e358c4c4a885dba0db023061f062661f255ea9b4b6

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bS:sxX7QnxrloE5dpUpXb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks