General

  • Target

    8c0d3161100185a620266907a51e9f02037a3969fa525ea6908306909fbec39dN

  • Size

    2.6MB

  • Sample

    241108-qcc2yssgqb

  • MD5

    33b4e30ee96a5727bc4493aeabd22780

  • SHA1

    e3afcfbe56f525706e317b6eb6d0a14c7da21f04

  • SHA256

    8c0d3161100185a620266907a51e9f02037a3969fa525ea6908306909fbec39d

  • SHA512

    b4ad73297d7a865b0b50f6e4ee51281e7279ffd47d3baf0af658cefd80b2b94d1c99993e6757a87a06e099f2ca801a20e1e35e6dbe5172df2c025c509e528e73

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bS:sxX7QnxrloE5dpUp6b

Malware Config

Targets

    • Target

      8c0d3161100185a620266907a51e9f02037a3969fa525ea6908306909fbec39dN

    • Size

      2.6MB

    • MD5

      33b4e30ee96a5727bc4493aeabd22780

    • SHA1

      e3afcfbe56f525706e317b6eb6d0a14c7da21f04

    • SHA256

      8c0d3161100185a620266907a51e9f02037a3969fa525ea6908306909fbec39d

    • SHA512

      b4ad73297d7a865b0b50f6e4ee51281e7279ffd47d3baf0af658cefd80b2b94d1c99993e6757a87a06e099f2ca801a20e1e35e6dbe5172df2c025c509e528e73

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bS:sxX7QnxrloE5dpUp6b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks