General

  • Target

    9a38f84baf0934882be057f989c6df5d6371da4d79af07f17dc622485f076b0aN

  • Size

    2.6MB

  • Sample

    241108-2wrv1a1lbt

  • MD5

    715576c05f35bc351aebaacfbc5f6b10

  • SHA1

    5fae5b27d815c649e98403034a213e25a5e020f8

  • SHA256

    9a38f84baf0934882be057f989c6df5d6371da4d79af07f17dc622485f076b0a

  • SHA512

    4edfdfb9e0771d120f547a9ce5ad74b3d90520f74179f49764e6ef8e44c4b1f38773476fa36b5ad880b56cb3eab2a63b216f5c9d9a408ecc9c2315a3c5840625

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bS:sxX7QnxrloE5dpUpJb

Malware Config

Targets

    • Target

      9a38f84baf0934882be057f989c6df5d6371da4d79af07f17dc622485f076b0aN

    • Size

      2.6MB

    • MD5

      715576c05f35bc351aebaacfbc5f6b10

    • SHA1

      5fae5b27d815c649e98403034a213e25a5e020f8

    • SHA256

      9a38f84baf0934882be057f989c6df5d6371da4d79af07f17dc622485f076b0a

    • SHA512

      4edfdfb9e0771d120f547a9ce5ad74b3d90520f74179f49764e6ef8e44c4b1f38773476fa36b5ad880b56cb3eab2a63b216f5c9d9a408ecc9c2315a3c5840625

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bS:sxX7QnxrloE5dpUpJb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks