General

  • Target

    de70cfae659f32108358c0bcf63505203ecfe2674c462f6ba6dcfd091ef9499aN

  • Size

    1.2MB

  • Sample

    241108-tyfxhsvgmh

  • MD5

    b0476b0bbba8c37527b582fb2a247b90

  • SHA1

    6854138296ab7497273489f0cc4a7cff306808bb

  • SHA256

    de70cfae659f32108358c0bcf63505203ecfe2674c462f6ba6dcfd091ef9499a

  • SHA512

    8a421e997a0f1f6b4aa21ca1231d838036e0c38d0c898d304d5a7feda7c93640636c6bca560e1171b8f6f6d72d4c375376149dadcb085841e77705cef7a6012a

  • SSDEEP

    12288:26KMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:j/SkQ/7Gb8NLEbeZ

Malware Config

Targets

    • Target

      de70cfae659f32108358c0bcf63505203ecfe2674c462f6ba6dcfd091ef9499aN

    • Size

      1.2MB

    • MD5

      b0476b0bbba8c37527b582fb2a247b90

    • SHA1

      6854138296ab7497273489f0cc4a7cff306808bb

    • SHA256

      de70cfae659f32108358c0bcf63505203ecfe2674c462f6ba6dcfd091ef9499a

    • SHA512

      8a421e997a0f1f6b4aa21ca1231d838036e0c38d0c898d304d5a7feda7c93640636c6bca560e1171b8f6f6d72d4c375376149dadcb085841e77705cef7a6012a

    • SSDEEP

      12288:26KMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:j/SkQ/7Gb8NLEbeZ

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks