General

  • Target

    7d930a14eebad1f625043725ca8e333648606889386f11ffc522cc92aeb4163aN

  • Size

    3.0MB

  • Sample

    241108-n6k9bavjar

  • MD5

    0dc4199ae89bc89d67931d95c65ba310

  • SHA1

    4906888fe37903c53bcb4914a166754972904c76

  • SHA256

    7d930a14eebad1f625043725ca8e333648606889386f11ffc522cc92aeb4163a

  • SHA512

    1931b29f828664b79d14afcbdb76e712addab3af8610749f0aefdca419bd13ecd309066dcab5ec7dce97b12ae76ed7038971b00f9675f2718725c9b151be24a0

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB5B/bSqz8b6LNX:sxX7QnxrloE5dpUpCbVz8eLF

Malware Config

Targets

    • Target

      7d930a14eebad1f625043725ca8e333648606889386f11ffc522cc92aeb4163aN

    • Size

      3.0MB

    • MD5

      0dc4199ae89bc89d67931d95c65ba310

    • SHA1

      4906888fe37903c53bcb4914a166754972904c76

    • SHA256

      7d930a14eebad1f625043725ca8e333648606889386f11ffc522cc92aeb4163a

    • SHA512

      1931b29f828664b79d14afcbdb76e712addab3af8610749f0aefdca419bd13ecd309066dcab5ec7dce97b12ae76ed7038971b00f9675f2718725c9b151be24a0

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB5B/bSqz8b6LNX:sxX7QnxrloE5dpUpCbVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks