General

  • Target

    8bec903bd942c7f455d51c6f307757f9dc8dfaefb39c145eee5dc4a929b25fecN

  • Size

    2.6MB

  • Sample

    241108-2ltxls1gkp

  • MD5

    11f66d938dd1beae0be6c023b9aacd50

  • SHA1

    968b5292f31dbb428accd5999f271c76b72196bf

  • SHA256

    8bec903bd942c7f455d51c6f307757f9dc8dfaefb39c145eee5dc4a929b25fec

  • SHA512

    446f2c0cdafa16a915bdb676020f46665ad10dc5d652cfd5385b5ab21d23743cad78be47457b2cec0cfdc784d70175ceaaa8ff968e0794a1bbc24c9018fbdd9d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBvB/bS:sxX7QnxrloE5dpUpIb

Malware Config

Targets

    • Target

      8bec903bd942c7f455d51c6f307757f9dc8dfaefb39c145eee5dc4a929b25fecN

    • Size

      2.6MB

    • MD5

      11f66d938dd1beae0be6c023b9aacd50

    • SHA1

      968b5292f31dbb428accd5999f271c76b72196bf

    • SHA256

      8bec903bd942c7f455d51c6f307757f9dc8dfaefb39c145eee5dc4a929b25fec

    • SHA512

      446f2c0cdafa16a915bdb676020f46665ad10dc5d652cfd5385b5ab21d23743cad78be47457b2cec0cfdc784d70175ceaaa8ff968e0794a1bbc24c9018fbdd9d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBvB/bS:sxX7QnxrloE5dpUpIb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks