General

  • Target

    2024-11-08_4827604cfabf8582e91fa1d9c083bbfc_mafia

  • Size

    1.4MB

  • Sample

    241108-pw3laaserr

  • MD5

    4827604cfabf8582e91fa1d9c083bbfc

  • SHA1

    867bee787b3f510d24b22192c18d8bce07b3f52c

  • SHA256

    27f43a1e604f189eaa0ad33458f7f4f1e4e2b4f315cf1e50bd70909670a7acbc

  • SHA512

    e4ddeaf095b14ebe363f24d0df81ecbf803286e37387e5f82abf68a1737e18dea221b6230df438fadda86d7e094b705ce8603f2b1018acb7f52c70cc1b805851

  • SSDEEP

    24576:tpEa2NFhTGuTzs7ozX0j52pMkuLoiSJVlIL29mhNq6:nEa2NjxfJ70jIpM3kiSBM29mhNq

Malware Config

Targets

    • Target

      2024-11-08_4827604cfabf8582e91fa1d9c083bbfc_mafia

    • Size

      1.4MB

    • MD5

      4827604cfabf8582e91fa1d9c083bbfc

    • SHA1

      867bee787b3f510d24b22192c18d8bce07b3f52c

    • SHA256

      27f43a1e604f189eaa0ad33458f7f4f1e4e2b4f315cf1e50bd70909670a7acbc

    • SHA512

      e4ddeaf095b14ebe363f24d0df81ecbf803286e37387e5f82abf68a1737e18dea221b6230df438fadda86d7e094b705ce8603f2b1018acb7f52c70cc1b805851

    • SSDEEP

      24576:tpEa2NFhTGuTzs7ozX0j52pMkuLoiSJVlIL29mhNq6:nEa2NjxfJ70jIpM3kiSBM29mhNq

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks