General

  • Target

    a64c801ea59170fc173d83fbe96aceea7892b6f2d4453e4994c827cee28bd843

  • Size

    1.3MB

  • Sample

    241108-sy44nsvdrj

  • MD5

    3a9946b1fd0b9c0bab59ab6e849089b2

  • SHA1

    6f8ca69e054c311ffd2c9da37ba126fbfb56149b

  • SHA256

    a64c801ea59170fc173d83fbe96aceea7892b6f2d4453e4994c827cee28bd843

  • SHA512

    116f46cd6f0336a18e4c3f01a56465045410fc54ea9e6f0f02cad8c286d95e38af4c45593670bc7251ae65cf72c7f4bce253728613e5e54b114b6f8ef9ff8704

  • SSDEEP

    24576:WIXgCWSpRy4dSJVDsVu5unzqWvX11Cks7WE9F5pwg8zmdqQjC60jiHkU:ZWSjLSJlsQuzqW/11Cks7R9L58UqFJjI

Malware Config

Targets

    • Target

      a64c801ea59170fc173d83fbe96aceea7892b6f2d4453e4994c827cee28bd843

    • Size

      1.3MB

    • MD5

      3a9946b1fd0b9c0bab59ab6e849089b2

    • SHA1

      6f8ca69e054c311ffd2c9da37ba126fbfb56149b

    • SHA256

      a64c801ea59170fc173d83fbe96aceea7892b6f2d4453e4994c827cee28bd843

    • SHA512

      116f46cd6f0336a18e4c3f01a56465045410fc54ea9e6f0f02cad8c286d95e38af4c45593670bc7251ae65cf72c7f4bce253728613e5e54b114b6f8ef9ff8704

    • SSDEEP

      24576:WIXgCWSpRy4dSJVDsVu5unzqWvX11Cks7WE9F5pwg8zmdqQjC60jiHkU:ZWSjLSJlsQuzqW/11Cks7R9L58UqFJjI

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks