General

  • Target

    343f3bfd54b40c1693356279bd1591cd0edf60f3bee074ac06c58213aa2bb30f

  • Size

    1.3MB

  • Sample

    241108-n3vnkssajd

  • MD5

    4ab15c8e33afddd38122ad2267dc6292

  • SHA1

    c4c43e4026b338e7f27eeea03c002c878fe06d4a

  • SHA256

    343f3bfd54b40c1693356279bd1591cd0edf60f3bee074ac06c58213aa2bb30f

  • SHA512

    2c1e17637090e5de31dd23b652b547394444d3a7f3f4797905ab3e373ce78e5e008a1c5587369e959b73f643528d8a892fac3319f8e7358f6b10559a30c42430

  • SSDEEP

    24576:vIXgCWSpRyndSJVDsVu5unzqWvX1eSkQ/7Gb8NLEbeZ:uWSjaSJlsQuzqW/1nkQ/qoLEw

Malware Config

Targets

    • Target

      343f3bfd54b40c1693356279bd1591cd0edf60f3bee074ac06c58213aa2bb30f

    • Size

      1.3MB

    • MD5

      4ab15c8e33afddd38122ad2267dc6292

    • SHA1

      c4c43e4026b338e7f27eeea03c002c878fe06d4a

    • SHA256

      343f3bfd54b40c1693356279bd1591cd0edf60f3bee074ac06c58213aa2bb30f

    • SHA512

      2c1e17637090e5de31dd23b652b547394444d3a7f3f4797905ab3e373ce78e5e008a1c5587369e959b73f643528d8a892fac3319f8e7358f6b10559a30c42430

    • SSDEEP

      24576:vIXgCWSpRyndSJVDsVu5unzqWvX1eSkQ/7Gb8NLEbeZ:uWSjaSJlsQuzqW/1nkQ/qoLEw

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks