General

  • Target

    8c08c21699e9f4436647a3c11ea36becd95e2bc567c24d3db9296b2432bf7df1N

  • Size

    2.6MB

  • Sample

    241108-3hz5ws1pex

  • MD5

    a51a48199653b76b47bf55ae6abdb470

  • SHA1

    53ca5ea420e3e5dd1ac9c0e2aeb4782030d9c753

  • SHA256

    8c08c21699e9f4436647a3c11ea36becd95e2bc567c24d3db9296b2432bf7df1

  • SHA512

    002d6bd0632487ccc37e23903994b2ed8f81dda382a3e259ddca7022347814be4f73f09d6882da3f4fd38aecc4a90a14e4eefa6ec55ad294beeb48d483cdc30c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpXb

Malware Config

Targets

    • Target

      8c08c21699e9f4436647a3c11ea36becd95e2bc567c24d3db9296b2432bf7df1N

    • Size

      2.6MB

    • MD5

      a51a48199653b76b47bf55ae6abdb470

    • SHA1

      53ca5ea420e3e5dd1ac9c0e2aeb4782030d9c753

    • SHA256

      8c08c21699e9f4436647a3c11ea36becd95e2bc567c24d3db9296b2432bf7df1

    • SHA512

      002d6bd0632487ccc37e23903994b2ed8f81dda382a3e259ddca7022347814be4f73f09d6882da3f4fd38aecc4a90a14e4eefa6ec55ad294beeb48d483cdc30c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpXb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks