General

  • Target

    c1dd65c592774f62b3725631366ea8b05660b1dfc049577daa68448cf3278b4cN

  • Size

    2.6MB

  • Sample

    241108-2kre4atpgr

  • MD5

    44e34eb4cc19d4dd6e2cd8838b5bdb80

  • SHA1

    e87d983c1eb39ef25554dec73e82ef355c9fb613

  • SHA256

    c1dd65c592774f62b3725631366ea8b05660b1dfc049577daa68448cf3278b4c

  • SHA512

    71cd4921c9a49e5e6e3224372223053e03169b0e6ca2b58080e421aee98abfa9703d4e26c556b88dab89bf0143b0212505c7411aae1dd8dcb0d430556b9a69d9

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUpHb

Malware Config

Targets

    • Target

      c1dd65c592774f62b3725631366ea8b05660b1dfc049577daa68448cf3278b4cN

    • Size

      2.6MB

    • MD5

      44e34eb4cc19d4dd6e2cd8838b5bdb80

    • SHA1

      e87d983c1eb39ef25554dec73e82ef355c9fb613

    • SHA256

      c1dd65c592774f62b3725631366ea8b05660b1dfc049577daa68448cf3278b4c

    • SHA512

      71cd4921c9a49e5e6e3224372223053e03169b0e6ca2b58080e421aee98abfa9703d4e26c556b88dab89bf0143b0212505c7411aae1dd8dcb0d430556b9a69d9

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUpHb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks