General

  • Target

    dcd91fc74001f48c4a7bb906c01c7cffabca0658ba1309ffe7d7ae19691b4ce1N

  • Size

    2.6MB

  • Sample

    241108-tpggpavjbx

  • MD5

    cdf68b6798b8d5b8a76ab7476e4616a0

  • SHA1

    2bf2a7d0d137f0ed3ad01a3963219108c1c51053

  • SHA256

    dcd91fc74001f48c4a7bb906c01c7cffabca0658ba1309ffe7d7ae19691b4ce1

  • SHA512

    b96fe79b822b0482951c7915681ad304eb1d7d71c1446b5b6f55cc0b5d16ab2f39e0301fb75fb59f7ecf31d1a044de7c18b3bfae279d9ff998e9faf7fcad9f4b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBlB/bS:sxX7QnxrloE5dpUpWb

Malware Config

Targets

    • Target

      dcd91fc74001f48c4a7bb906c01c7cffabca0658ba1309ffe7d7ae19691b4ce1N

    • Size

      2.6MB

    • MD5

      cdf68b6798b8d5b8a76ab7476e4616a0

    • SHA1

      2bf2a7d0d137f0ed3ad01a3963219108c1c51053

    • SHA256

      dcd91fc74001f48c4a7bb906c01c7cffabca0658ba1309ffe7d7ae19691b4ce1

    • SHA512

      b96fe79b822b0482951c7915681ad304eb1d7d71c1446b5b6f55cc0b5d16ab2f39e0301fb75fb59f7ecf31d1a044de7c18b3bfae279d9ff998e9faf7fcad9f4b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBlB/bS:sxX7QnxrloE5dpUpWb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks