General

  • Target

    03e18e21ac166fb20946b3242317b94436fe8803ea1700bd66efb4a6bf211a9eN

  • Size

    2.6MB

  • Sample

    241108-st48wavdkr

  • MD5

    088a83a3d13ac59ab9d927669cd560c0

  • SHA1

    2520ff62e24f85c048bf5d1195cd2e807dae66b6

  • SHA256

    03e18e21ac166fb20946b3242317b94436fe8803ea1700bd66efb4a6bf211a9e

  • SHA512

    7f3bce6e9f03f949ac5bb26ae962598d236a8655630f62f741055717c7f57fc2974d4c32502768f474bb95952b17c6189d81cb1f9f8b7a2db85865b3a8db0e84

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBCB/bSq:sxX7QnxrloE5dpUp5bV

Malware Config

Targets

    • Target

      03e18e21ac166fb20946b3242317b94436fe8803ea1700bd66efb4a6bf211a9eN

    • Size

      2.6MB

    • MD5

      088a83a3d13ac59ab9d927669cd560c0

    • SHA1

      2520ff62e24f85c048bf5d1195cd2e807dae66b6

    • SHA256

      03e18e21ac166fb20946b3242317b94436fe8803ea1700bd66efb4a6bf211a9e

    • SHA512

      7f3bce6e9f03f949ac5bb26ae962598d236a8655630f62f741055717c7f57fc2974d4c32502768f474bb95952b17c6189d81cb1f9f8b7a2db85865b3a8db0e84

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBCB/bSq:sxX7QnxrloE5dpUp5bV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks