General

  • Target

    1d0627bbf81022622a5a1d2508b712d91a369d10db2255ea3ac84f6af30680a5N

  • Size

    2.6MB

  • Sample

    241108-2atsga1dlf

  • MD5

    c0f890c9b99201af39fd56f688b7d8e0

  • SHA1

    6ca6f2ad3d375789f061c2f78aead750025bb599

  • SHA256

    1d0627bbf81022622a5a1d2508b712d91a369d10db2255ea3ac84f6af30680a5

  • SHA512

    27e12397a0946219f60256774774a5aab5309935a717439a6a1eae1b6c68a1ac4272178cda5d8548298fa0cc22e58adefb36ffa78d58a1f318d0d9d17f697c3c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bSq:sxX7QnxrloE5dpUpBbV

Malware Config

Targets

    • Target

      1d0627bbf81022622a5a1d2508b712d91a369d10db2255ea3ac84f6af30680a5N

    • Size

      2.6MB

    • MD5

      c0f890c9b99201af39fd56f688b7d8e0

    • SHA1

      6ca6f2ad3d375789f061c2f78aead750025bb599

    • SHA256

      1d0627bbf81022622a5a1d2508b712d91a369d10db2255ea3ac84f6af30680a5

    • SHA512

      27e12397a0946219f60256774774a5aab5309935a717439a6a1eae1b6c68a1ac4272178cda5d8548298fa0cc22e58adefb36ffa78d58a1f318d0d9d17f697c3c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bSq:sxX7QnxrloE5dpUpBbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks