General

  • Target

    220e682341c2a933d09a664ba22b9d0e909aa738c3a2ec1a1483e3c6b52fa0e7N

  • Size

    2.6MB

  • Sample

    241108-pag3fsscjk

  • MD5

    a2ea6b50ec22ed4e3f1f8753feb82f60

  • SHA1

    ea6328b94bd4bb4b69882f255be30236d28a54b4

  • SHA256

    220e682341c2a933d09a664ba22b9d0e909aa738c3a2ec1a1483e3c6b52fa0e7

  • SHA512

    71a1494798fda001f4ff7ca3de8a5c95986a3cc3be97569944a8f456e18617a64c68eecf09febdaa5f35b5a0cc256fb68ba4b28278555b33d25b04aeee58b04e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB8B/bSq:sxX7QnxrloE5dpUp7bV

Malware Config

Targets

    • Target

      220e682341c2a933d09a664ba22b9d0e909aa738c3a2ec1a1483e3c6b52fa0e7N

    • Size

      2.6MB

    • MD5

      a2ea6b50ec22ed4e3f1f8753feb82f60

    • SHA1

      ea6328b94bd4bb4b69882f255be30236d28a54b4

    • SHA256

      220e682341c2a933d09a664ba22b9d0e909aa738c3a2ec1a1483e3c6b52fa0e7

    • SHA512

      71a1494798fda001f4ff7ca3de8a5c95986a3cc3be97569944a8f456e18617a64c68eecf09febdaa5f35b5a0cc256fb68ba4b28278555b33d25b04aeee58b04e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB8B/bSq:sxX7QnxrloE5dpUp7bV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks