General

  • Target

    dbcbeaef471184900753f9662897ecbb229510f5125f658fba27b12b155e6458

  • Size

    1.3MB

  • Sample

    241108-n5pv4ssalf

  • MD5

    76791f175277de92e725ca063fc575e6

  • SHA1

    ef96569e43ce47a6e1553ac3a5b2eb4e11317104

  • SHA256

    dbcbeaef471184900753f9662897ecbb229510f5125f658fba27b12b155e6458

  • SHA512

    37e33c5d8cd7edbfb47b02562b99f4129dd9e4269bcd5a10d0f1643660184e7f4f0d1993e851fb81310155d952346da16efa78ee0ef353ea743ebd535535c76d

  • SSDEEP

    24576:0IXgCWSpRyndSJVDsVu5unzqWvX1aSkQ/7Gb8NLEbeZ:XWSjaSJlsQuzqW/1zkQ/qoLEw

Malware Config

Targets

    • Target

      dbcbeaef471184900753f9662897ecbb229510f5125f658fba27b12b155e6458

    • Size

      1.3MB

    • MD5

      76791f175277de92e725ca063fc575e6

    • SHA1

      ef96569e43ce47a6e1553ac3a5b2eb4e11317104

    • SHA256

      dbcbeaef471184900753f9662897ecbb229510f5125f658fba27b12b155e6458

    • SHA512

      37e33c5d8cd7edbfb47b02562b99f4129dd9e4269bcd5a10d0f1643660184e7f4f0d1993e851fb81310155d952346da16efa78ee0ef353ea743ebd535535c76d

    • SSDEEP

      24576:0IXgCWSpRyndSJVDsVu5unzqWvX1aSkQ/7Gb8NLEbeZ:XWSjaSJlsQuzqW/1zkQ/qoLEw

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks