General

  • Target

    7e88986f9ced27b65f4a360a6ffdb82f8c38701b71686e677631816efe434a2fN

  • Size

    2.6MB

  • Sample

    241108-p37htavnhk

  • MD5

    f0b744b1415c66f734160a603184c720

  • SHA1

    3e3eb1b6ff0da239fed74b163db964a07989b53d

  • SHA256

    7e88986f9ced27b65f4a360a6ffdb82f8c38701b71686e677631816efe434a2f

  • SHA512

    2eb3d293682bf0599ea86b7d455818f3201d0aa71a2d0e14ee43d5f9f63ec608f370a2ba299e5362906a244e402d58377d9e2a940d35992696e7f291a2eb6d76

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bS:sxX7QnxrloE5dpUp2b

Malware Config

Targets

    • Target

      7e88986f9ced27b65f4a360a6ffdb82f8c38701b71686e677631816efe434a2fN

    • Size

      2.6MB

    • MD5

      f0b744b1415c66f734160a603184c720

    • SHA1

      3e3eb1b6ff0da239fed74b163db964a07989b53d

    • SHA256

      7e88986f9ced27b65f4a360a6ffdb82f8c38701b71686e677631816efe434a2f

    • SHA512

      2eb3d293682bf0599ea86b7d455818f3201d0aa71a2d0e14ee43d5f9f63ec608f370a2ba299e5362906a244e402d58377d9e2a940d35992696e7f291a2eb6d76

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bS:sxX7QnxrloE5dpUp2b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks