General

  • Target

    7f16b1c680a76c5f1539c6c973e2f44f3e47efbfa3958a5a6430da2f28fe669eN

  • Size

    2.6MB

  • Sample

    241108-3qhwkssenl

  • MD5

    5e766b1c0a77dc453ff6f67737e8bec0

  • SHA1

    4de0702d4d12030108e83a9bc31696fd9508314b

  • SHA256

    7f16b1c680a76c5f1539c6c973e2f44f3e47efbfa3958a5a6430da2f28fe669e

  • SHA512

    c116bef1e3bb97d73dcaefdb79fd8dbaf800aa7296a11f704aff28760bd278372ea578e47b88071e30b1530abb06d0f09851e72c0416a474a0faed1c68a2e338

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bS:sxX7QnxrloE5dpUpvb

Malware Config

Targets

    • Target

      7f16b1c680a76c5f1539c6c973e2f44f3e47efbfa3958a5a6430da2f28fe669eN

    • Size

      2.6MB

    • MD5

      5e766b1c0a77dc453ff6f67737e8bec0

    • SHA1

      4de0702d4d12030108e83a9bc31696fd9508314b

    • SHA256

      7f16b1c680a76c5f1539c6c973e2f44f3e47efbfa3958a5a6430da2f28fe669e

    • SHA512

      c116bef1e3bb97d73dcaefdb79fd8dbaf800aa7296a11f704aff28760bd278372ea578e47b88071e30b1530abb06d0f09851e72c0416a474a0faed1c68a2e338

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bS:sxX7QnxrloE5dpUpvb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks