General

  • Target

    89af6b6ae689c1a7adbce6ef93aa42eecc0a43218ade6b14c697c1f133f36e66

  • Size

    93KB

  • Sample

    241108-n9xfrasbqn

  • MD5

    f8622e5e7b6d524c251346bb75f59bd1

  • SHA1

    c112e90927ea1db0745294f4346aef349e5b0745

  • SHA256

    89af6b6ae689c1a7adbce6ef93aa42eecc0a43218ade6b14c697c1f133f36e66

  • SHA512

    d418140b6531208d8dc8111fe9ed2ea1f395362e31690f57f4fbd5b2e94535fe37687087559e6632ecb74f64d216b22256d80536f1f1ebd389c25000399f2276

  • SSDEEP

    1536:J4zaYzMXqtGN/CstC9qVFeyapmebn4ddJZeY86iLflLJYEIs67rxo:J4zaY46tGNFC0VFDLK4ddJMY86ipmnsx

Malware Config

Targets

    • Target

      89af6b6ae689c1a7adbce6ef93aa42eecc0a43218ade6b14c697c1f133f36e66

    • Size

      93KB

    • MD5

      f8622e5e7b6d524c251346bb75f59bd1

    • SHA1

      c112e90927ea1db0745294f4346aef349e5b0745

    • SHA256

      89af6b6ae689c1a7adbce6ef93aa42eecc0a43218ade6b14c697c1f133f36e66

    • SHA512

      d418140b6531208d8dc8111fe9ed2ea1f395362e31690f57f4fbd5b2e94535fe37687087559e6632ecb74f64d216b22256d80536f1f1ebd389c25000399f2276

    • SSDEEP

      1536:J4zaYzMXqtGN/CstC9qVFeyapmebn4ddJZeY86iLflLJYEIs67rxo:J4zaY46tGNFC0VFDLK4ddJMY86ipmnsx

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks