General

  • Target

    993ea3d4d8df288226057527d896f0cc0963651b16e3c2ffe3188c4633598ef7

  • Size

    1.1MB

  • Sample

    241108-n7llgavjcl

  • MD5

    259baf1c88fa1977d7e8054d6c6fd964

  • SHA1

    80bfa5c505a81bb91731fe0ddffb04d406a2583a

  • SHA256

    993ea3d4d8df288226057527d896f0cc0963651b16e3c2ffe3188c4633598ef7

  • SHA512

    20e834bd2fbed3466b15103a25e793352a04a10bc45e6d1d8a1afae1e810b0a78f3186633cf2dfb5c3fab719535ec7eef4c71858d336f62e5cb9e0fcb2c19c15

  • SSDEEP

    24576:c3NdXT9T+w6zY8v5a2FZ7WDpk2Kvfd5nP6Wp8zrMBThYBjv:cddZ6zY8/7WDaDvfd5iQ8zoBThojv

Malware Config

Targets

    • Target

      993ea3d4d8df288226057527d896f0cc0963651b16e3c2ffe3188c4633598ef7

    • Size

      1.1MB

    • MD5

      259baf1c88fa1977d7e8054d6c6fd964

    • SHA1

      80bfa5c505a81bb91731fe0ddffb04d406a2583a

    • SHA256

      993ea3d4d8df288226057527d896f0cc0963651b16e3c2ffe3188c4633598ef7

    • SHA512

      20e834bd2fbed3466b15103a25e793352a04a10bc45e6d1d8a1afae1e810b0a78f3186633cf2dfb5c3fab719535ec7eef4c71858d336f62e5cb9e0fcb2c19c15

    • SSDEEP

      24576:c3NdXT9T+w6zY8v5a2FZ7WDpk2Kvfd5nP6Wp8zrMBThYBjv:cddZ6zY8/7WDaDvfd5iQ8zoBThojv

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks