General

  • Target

    5aca92a69af33bf041ee0d4b73e11096c904e129091f27de647d22e1d802cbc2N

  • Size

    2.6MB

  • Sample

    241108-2fg1vs1emb

  • MD5

    67021d50d2ef7b5d6af33d2f6d9d4990

  • SHA1

    96cdb395a603e4418ebdac4275e2eeea03d242e0

  • SHA256

    5aca92a69af33bf041ee0d4b73e11096c904e129091f27de647d22e1d802cbc2

  • SHA512

    cf1b7e39de9b65e8a3a99f88bda660b15ea1b85176fbb6aaa9a36db83ed7b319427e310c0d103b6fec7c3668d989c21c3cf22c793d15cc44aff31668a5bbe1fe

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bS:sxX7QnxrloE5dpUpGb

Malware Config

Targets

    • Target

      5aca92a69af33bf041ee0d4b73e11096c904e129091f27de647d22e1d802cbc2N

    • Size

      2.6MB

    • MD5

      67021d50d2ef7b5d6af33d2f6d9d4990

    • SHA1

      96cdb395a603e4418ebdac4275e2eeea03d242e0

    • SHA256

      5aca92a69af33bf041ee0d4b73e11096c904e129091f27de647d22e1d802cbc2

    • SHA512

      cf1b7e39de9b65e8a3a99f88bda660b15ea1b85176fbb6aaa9a36db83ed7b319427e310c0d103b6fec7c3668d989c21c3cf22c793d15cc44aff31668a5bbe1fe

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bS:sxX7QnxrloE5dpUpGb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks