General

  • Target

    e3bda7f66d2ee9c56cc98e4d8bc07b4a831409116be85f6de8188c4798b676d1

  • Size

    5.7MB

  • Sample

    241108-n9zk4ssbjh

  • MD5

    e1b25ec77cb91cca0d6dbc87960a6846

  • SHA1

    a828732b899b212072998a299ade9bc06a240eb9

  • SHA256

    e3bda7f66d2ee9c56cc98e4d8bc07b4a831409116be85f6de8188c4798b676d1

  • SHA512

    416a6b95de3573e16d399631c96492a51984a8e9a54b6c0ac1e429f87cec6cf02232e6ee9979d514820e6c535912821029285380eb26ef553ed9355276f0c3e4

  • SSDEEP

    49152:6KPv94AEsKU8ggw1g+1CART5eBiyKS3EI3wybn20DCYIHvc8ixuZm9+fWsw6dTPn:6sKUgTH2M2m9UMpu1QfLczqssnKSk

Malware Config

Targets

    • Target

      e3bda7f66d2ee9c56cc98e4d8bc07b4a831409116be85f6de8188c4798b676d1

    • Size

      5.7MB

    • MD5

      e1b25ec77cb91cca0d6dbc87960a6846

    • SHA1

      a828732b899b212072998a299ade9bc06a240eb9

    • SHA256

      e3bda7f66d2ee9c56cc98e4d8bc07b4a831409116be85f6de8188c4798b676d1

    • SHA512

      416a6b95de3573e16d399631c96492a51984a8e9a54b6c0ac1e429f87cec6cf02232e6ee9979d514820e6c535912821029285380eb26ef553ed9355276f0c3e4

    • SSDEEP

      49152:6KPv94AEsKU8ggw1g+1CART5eBiyKS3EI3wybn20DCYIHvc8ixuZm9+fWsw6dTPn:6sKUgTH2M2m9UMpu1QfLczqssnKSk

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks