General

  • Target

    f997df7ac1649bd34a1c87873bc68a10a9ed6a9fffa92cca8320faca2c98c300N

  • Size

    2.6MB

  • Sample

    241108-pgjjvs1nev

  • MD5

    100fe9882157b5de43ffa45b06182070

  • SHA1

    077ec1db08d976ba9efd452ea2c51b0a54a3f4af

  • SHA256

    f997df7ac1649bd34a1c87873bc68a10a9ed6a9fffa92cca8320faca2c98c300

  • SHA512

    e51237410ba338f6777177b126bad5a6d909ea2d171e3b08793227cea3172b06bb6d0e0c380b405b3421065e216ebece0890fa463507c0b723f043611182c558

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpAb

Malware Config

Targets

    • Target

      f997df7ac1649bd34a1c87873bc68a10a9ed6a9fffa92cca8320faca2c98c300N

    • Size

      2.6MB

    • MD5

      100fe9882157b5de43ffa45b06182070

    • SHA1

      077ec1db08d976ba9efd452ea2c51b0a54a3f4af

    • SHA256

      f997df7ac1649bd34a1c87873bc68a10a9ed6a9fffa92cca8320faca2c98c300

    • SHA512

      e51237410ba338f6777177b126bad5a6d909ea2d171e3b08793227cea3172b06bb6d0e0c380b405b3421065e216ebece0890fa463507c0b723f043611182c558

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpAb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks