General

  • Target

    53966b6227d74611215b1696b3486812bd35c0362ec7ad5b4b01fa891406628aN

  • Size

    2.6MB

  • Sample

    241108-rrkwsasra1

  • MD5

    39e078a66e22cf574d8ff712bd217040

  • SHA1

    857a3a5925b81392e954c9d98555d15433b190f4

  • SHA256

    53966b6227d74611215b1696b3486812bd35c0362ec7ad5b4b01fa891406628a

  • SHA512

    4073d533a854238a8c8ca21de8a9250fab81be71512c692803a3098237811147ab89aa5e4faf2794c89d46fce20a9833c4c163fb7f004aa261663cc60e10e1a7

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBvB/bS:sxX7QnxrloE5dpUpYb

Malware Config

Targets

    • Target

      53966b6227d74611215b1696b3486812bd35c0362ec7ad5b4b01fa891406628aN

    • Size

      2.6MB

    • MD5

      39e078a66e22cf574d8ff712bd217040

    • SHA1

      857a3a5925b81392e954c9d98555d15433b190f4

    • SHA256

      53966b6227d74611215b1696b3486812bd35c0362ec7ad5b4b01fa891406628a

    • SHA512

      4073d533a854238a8c8ca21de8a9250fab81be71512c692803a3098237811147ab89aa5e4faf2794c89d46fce20a9833c4c163fb7f004aa261663cc60e10e1a7

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBvB/bS:sxX7QnxrloE5dpUpYb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks