General

  • Target

    d00c758e51ec166ae3a629d00363d8b7f16306a7a2cb2b590676e2d0fb162efeN

  • Size

    92KB

  • Sample

    241108-zlr2xaymgx

  • MD5

    da86bc02dafe27f18edf7fbe41d6ebd0

  • SHA1

    e859d0411b78897d932cccb8f81937d1d4c06579

  • SHA256

    d00c758e51ec166ae3a629d00363d8b7f16306a7a2cb2b590676e2d0fb162efe

  • SHA512

    9b110dc55c145b8e34a3e462ecf3ad5d67864327b809ab8f4d031da4f31b597d54bb0a3f470c6656bd316db298969d39b49b38d2242c53a905c7289fadc8dde8

  • SSDEEP

    1536:Qop4omMoASK9Ko7ixUu8E/WRfJJ877cPxC:QoW4d98o7iH8vlJJ87YxC

Malware Config

Targets

    • Target

      d00c758e51ec166ae3a629d00363d8b7f16306a7a2cb2b590676e2d0fb162efeN

    • Size

      92KB

    • MD5

      da86bc02dafe27f18edf7fbe41d6ebd0

    • SHA1

      e859d0411b78897d932cccb8f81937d1d4c06579

    • SHA256

      d00c758e51ec166ae3a629d00363d8b7f16306a7a2cb2b590676e2d0fb162efe

    • SHA512

      9b110dc55c145b8e34a3e462ecf3ad5d67864327b809ab8f4d031da4f31b597d54bb0a3f470c6656bd316db298969d39b49b38d2242c53a905c7289fadc8dde8

    • SSDEEP

      1536:Qop4omMoASK9Ko7ixUu8E/WRfJJ877cPxC:QoW4d98o7iH8vlJJ87YxC

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks