General

  • Target

    786de8f5ce5d6da450361bcc0bca6ac726fa15af61a4ab30c27ada50460e8a4dN

  • Size

    2.6MB

  • Sample

    241108-sxykhaxlck

  • MD5

    35b952a8847037874914967a487a9f80

  • SHA1

    5a24527ad5146697626e0d069098f02c3736fb77

  • SHA256

    786de8f5ce5d6da450361bcc0bca6ac726fa15af61a4ab30c27ada50460e8a4d

  • SHA512

    41df7374e72875d50c2479f09bd37faf194367bdb88d2709ede1d918da3218f7bc1d80df512d9d5787f9aec68cdb2c2738ca21a030bfb345e1713092dc006d14

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUpMb

Malware Config

Targets

    • Target

      786de8f5ce5d6da450361bcc0bca6ac726fa15af61a4ab30c27ada50460e8a4dN

    • Size

      2.6MB

    • MD5

      35b952a8847037874914967a487a9f80

    • SHA1

      5a24527ad5146697626e0d069098f02c3736fb77

    • SHA256

      786de8f5ce5d6da450361bcc0bca6ac726fa15af61a4ab30c27ada50460e8a4d

    • SHA512

      41df7374e72875d50c2479f09bd37faf194367bdb88d2709ede1d918da3218f7bc1d80df512d9d5787f9aec68cdb2c2738ca21a030bfb345e1713092dc006d14

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUpMb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks