General

  • Target

    6fcd4872b361df517b9814a36dad567fd8c8e0bf011c6109de5b93a9babd565b

  • Size

    1.5MB

  • Sample

    241108-3ylx7ssfmc

  • MD5

    e598377ae3dea8e38c0f44c5538dff37

  • SHA1

    bb846cafd4526b97b826aff53ba9925da58ff790

  • SHA256

    6fcd4872b361df517b9814a36dad567fd8c8e0bf011c6109de5b93a9babd565b

  • SHA512

    8b9eb51ff72a81ea4cee817f244f3903bcdfed77b152618a84256791eed8698fed1d0dd0a9b1df32e7e82cbf75e6792917ae4b939f7cc3d27b0359ec7f8029ba

  • SSDEEP

    12288:ywz2DWUHCAV2vFd4hU5dRpxLkefh35F28hJhxPad620Kr4QSx8:Nz2DWGCAV2v93jxLlh35FPvhkdLrb

Malware Config

Targets

    • Target

      6fcd4872b361df517b9814a36dad567fd8c8e0bf011c6109de5b93a9babd565b

    • Size

      1.5MB

    • MD5

      e598377ae3dea8e38c0f44c5538dff37

    • SHA1

      bb846cafd4526b97b826aff53ba9925da58ff790

    • SHA256

      6fcd4872b361df517b9814a36dad567fd8c8e0bf011c6109de5b93a9babd565b

    • SHA512

      8b9eb51ff72a81ea4cee817f244f3903bcdfed77b152618a84256791eed8698fed1d0dd0a9b1df32e7e82cbf75e6792917ae4b939f7cc3d27b0359ec7f8029ba

    • SSDEEP

      12288:ywz2DWUHCAV2vFd4hU5dRpxLkefh35F28hJhxPad620Kr4QSx8:Nz2DWGCAV2v93jxLlh35FPvhkdLrb

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks