General

  • Target

    unext.exe

  • Size

    21.4MB

  • Sample

    241108-3pfd3asekd

  • MD5

    b6853f56dcb9df17642c73ff22ca6395

  • SHA1

    eeac6671666fe797d8e111fd652b6799a9aa86c6

  • SHA256

    0242cf0f099ba698cc91112ffdbdf014ed3f3bd0bdede3f982cfe5a9d45b69a8

  • SHA512

    4fd1d90077a7be2ec497317bb0bf16055a0ea3db9aeb4efe63b286ed71ac12d6f28a4eb625d9dbfff1a8e3dee71e33f77849745e81193b0225de2ad644be03d7

  • SSDEEP

    393216:lBbA/XDhUtr9fXSnxrXld6MoYmz+v1UwOwreDNNjYVZey0nZdg+ogm1:jA/XMr9KhXeMbmz+vZsBYmBZas2

Score
7/10

Malware Config

Targets

    • Target

      unext.exe

    • Size

      21.4MB

    • MD5

      b6853f56dcb9df17642c73ff22ca6395

    • SHA1

      eeac6671666fe797d8e111fd652b6799a9aa86c6

    • SHA256

      0242cf0f099ba698cc91112ffdbdf014ed3f3bd0bdede3f982cfe5a9d45b69a8

    • SHA512

      4fd1d90077a7be2ec497317bb0bf16055a0ea3db9aeb4efe63b286ed71ac12d6f28a4eb625d9dbfff1a8e3dee71e33f77849745e81193b0225de2ad644be03d7

    • SSDEEP

      393216:lBbA/XDhUtr9fXSnxrXld6MoYmz+v1UwOwreDNNjYVZey0nZdg+ogm1:jA/XMr9KhXeMbmz+vZsBYmBZas2

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks