General

  • Target

    124240f84b44d907352ef68b32bcdbb4264c6208c09e972792bb3ac6a7209287N

  • Size

    2.6MB

  • Sample

    241108-2r1x4strcn

  • MD5

    9feeca57632898e3da8059d8a4bc2340

  • SHA1

    5d4c5b58eb8b2e0b23edcbd7fdb5e770d01b4d3f

  • SHA256

    124240f84b44d907352ef68b32bcdbb4264c6208c09e972792bb3ac6a7209287

  • SHA512

    bead80473821d2964cb9f4b64f6c4c7736b7520cdd5ce44bd619d68738ed21d6843c043e8bd545b73ec9acc8426c13ae8c17e2448648d7381166e972ae2aa8e5

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB1B/bS:sxX7QnxrloE5dpUp+b

Malware Config

Targets

    • Target

      124240f84b44d907352ef68b32bcdbb4264c6208c09e972792bb3ac6a7209287N

    • Size

      2.6MB

    • MD5

      9feeca57632898e3da8059d8a4bc2340

    • SHA1

      5d4c5b58eb8b2e0b23edcbd7fdb5e770d01b4d3f

    • SHA256

      124240f84b44d907352ef68b32bcdbb4264c6208c09e972792bb3ac6a7209287

    • SHA512

      bead80473821d2964cb9f4b64f6c4c7736b7520cdd5ce44bd619d68738ed21d6843c043e8bd545b73ec9acc8426c13ae8c17e2448648d7381166e972ae2aa8e5

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB1B/bS:sxX7QnxrloE5dpUp+b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks