General

  • Target

    903d73da9c11190677a00afa9f8eaaa59d54412da2564dc76a95b66e61f036b2N

  • Size

    2.6MB

  • Sample

    241108-sasqqsvalr

  • MD5

    69399404c4e89f3d89a19eec66a21b20

  • SHA1

    125d83a8131e31a04bc45b0c9ff9847d246c6b99

  • SHA256

    903d73da9c11190677a00afa9f8eaaa59d54412da2564dc76a95b66e61f036b2

  • SHA512

    28397b318c5205b16e80b8a901c1d70ef71f48b3dacea6b1b101d689aab7ae6d7c2cd813c052158a12307cb238ec89f55e40f9f9ef3e6988a42d4bae1123123d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUpMb

Malware Config

Targets

    • Target

      903d73da9c11190677a00afa9f8eaaa59d54412da2564dc76a95b66e61f036b2N

    • Size

      2.6MB

    • MD5

      69399404c4e89f3d89a19eec66a21b20

    • SHA1

      125d83a8131e31a04bc45b0c9ff9847d246c6b99

    • SHA256

      903d73da9c11190677a00afa9f8eaaa59d54412da2564dc76a95b66e61f036b2

    • SHA512

      28397b318c5205b16e80b8a901c1d70ef71f48b3dacea6b1b101d689aab7ae6d7c2cd813c052158a12307cb238ec89f55e40f9f9ef3e6988a42d4bae1123123d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUpMb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks