General

  • Target

    f4ed82e04cad02e53ffe4dc1caac2e3e24471f8e25c0a6611e138629d8282a89N

  • Size

    2.6MB

  • Sample

    241108-sfe2tstmas

  • MD5

    7c5ec4cf4d8f7aa0c39533542cb75190

  • SHA1

    21d9fcd8da84e8890c6aa625cc0aac4bff1ea977

  • SHA256

    f4ed82e04cad02e53ffe4dc1caac2e3e24471f8e25c0a6611e138629d8282a89

  • SHA512

    0f7924e7011e38a6a86157907a501e9ffec1a75d5cd0477e8e23b169d345a059e23f91d4efbc9227e530905337f3aaeafbed81677885d95f8582da1888b11d2e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bS:sxX7QnxrloE5dpUpGb

Malware Config

Targets

    • Target

      f4ed82e04cad02e53ffe4dc1caac2e3e24471f8e25c0a6611e138629d8282a89N

    • Size

      2.6MB

    • MD5

      7c5ec4cf4d8f7aa0c39533542cb75190

    • SHA1

      21d9fcd8da84e8890c6aa625cc0aac4bff1ea977

    • SHA256

      f4ed82e04cad02e53ffe4dc1caac2e3e24471f8e25c0a6611e138629d8282a89

    • SHA512

      0f7924e7011e38a6a86157907a501e9ffec1a75d5cd0477e8e23b169d345a059e23f91d4efbc9227e530905337f3aaeafbed81677885d95f8582da1888b11d2e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bS:sxX7QnxrloE5dpUpGb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks