General

  • Target

    2a2788d4275a69450ea932e5eb93a9f3aa9dd9089389cb89f8e1947cfaf82980N

  • Size

    1.5MB

  • Sample

    241108-znrh6azcpj

  • MD5

    760e1d80f20c587146479f215c62de40

  • SHA1

    3b0d2351f05e8a71e57564d521b663d729cbc760

  • SHA256

    2a2788d4275a69450ea932e5eb93a9f3aa9dd9089389cb89f8e1947cfaf82980

  • SHA512

    9d73802850abd30933fffb686c7398abebb8b0fecde3170c807a4d5c9570848c66c30dd7bf660cd439931995656511c0c656d63833dae4958b452cd0f578140b

  • SSDEEP

    12288:fWvMIP4oXJRfDtCxOvUYGt/sB1KcYmqgZvAMlUoUjG+YKtMfnkOeZb5JYiNAgAPh:fNoXTBCRft/sBlDqgZQd6XKtiMJYiPU

Malware Config

Targets

    • Target

      2a2788d4275a69450ea932e5eb93a9f3aa9dd9089389cb89f8e1947cfaf82980N

    • Size

      1.5MB

    • MD5

      760e1d80f20c587146479f215c62de40

    • SHA1

      3b0d2351f05e8a71e57564d521b663d729cbc760

    • SHA256

      2a2788d4275a69450ea932e5eb93a9f3aa9dd9089389cb89f8e1947cfaf82980

    • SHA512

      9d73802850abd30933fffb686c7398abebb8b0fecde3170c807a4d5c9570848c66c30dd7bf660cd439931995656511c0c656d63833dae4958b452cd0f578140b

    • SSDEEP

      12288:fWvMIP4oXJRfDtCxOvUYGt/sB1KcYmqgZvAMlUoUjG+YKtMfnkOeZb5JYiNAgAPh:fNoXTBCRft/sBlDqgZQd6XKtiMJYiPU

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks