General

  • Target

    3f8464c1cc0294ff11d73d0d057993df77a8f5b0741012eef6da9441d7b9e772N

  • Size

    2.6MB

  • Sample

    241108-p8kagasfrg

  • MD5

    3e6f50ee48a51e32b20aa767477164b0

  • SHA1

    9ec5f2e7f8aa2bd95aa2c69b0d2ce3e2163ce213

  • SHA256

    3f8464c1cc0294ff11d73d0d057993df77a8f5b0741012eef6da9441d7b9e772

  • SHA512

    9d20dca9f66d192f2f52488a41b323862e9d76758b6cb2b5899e6dfe0acac53ab3861778bfa43cfde73e5a3a2151e9de7dd3e6517254598473b0659873849b7c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBeB/bS:sxX7QnxrloE5dpUphb

Malware Config

Targets

    • Target

      3f8464c1cc0294ff11d73d0d057993df77a8f5b0741012eef6da9441d7b9e772N

    • Size

      2.6MB

    • MD5

      3e6f50ee48a51e32b20aa767477164b0

    • SHA1

      9ec5f2e7f8aa2bd95aa2c69b0d2ce3e2163ce213

    • SHA256

      3f8464c1cc0294ff11d73d0d057993df77a8f5b0741012eef6da9441d7b9e772

    • SHA512

      9d20dca9f66d192f2f52488a41b323862e9d76758b6cb2b5899e6dfe0acac53ab3861778bfa43cfde73e5a3a2151e9de7dd3e6517254598473b0659873849b7c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBeB/bS:sxX7QnxrloE5dpUphb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks