General

  • Target

    2048729f63760550953dcfdeb70ad67caab1c605c3dffccdff023c036e1abcfaN

  • Size

    2.6MB

  • Sample

    241108-zpvxzazbpa

  • MD5

    fe44659af694cba35d1bc4b2742e21b0

  • SHA1

    5cbaa97dc7cbd0bd10229b33966ab5712deb56c5

  • SHA256

    2048729f63760550953dcfdeb70ad67caab1c605c3dffccdff023c036e1abcfa

  • SHA512

    f313540fe3eb7af28198359343f8374154be196581484d35feb9def238fc99dff2d815b6d1d632a903401ebdcb7ca2fbaa33b8f695bd3ad23d966e193bd72d44

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bSq:sxX7QnxrloE5dpUpdbV

Malware Config

Targets

    • Target

      2048729f63760550953dcfdeb70ad67caab1c605c3dffccdff023c036e1abcfaN

    • Size

      2.6MB

    • MD5

      fe44659af694cba35d1bc4b2742e21b0

    • SHA1

      5cbaa97dc7cbd0bd10229b33966ab5712deb56c5

    • SHA256

      2048729f63760550953dcfdeb70ad67caab1c605c3dffccdff023c036e1abcfa

    • SHA512

      f313540fe3eb7af28198359343f8374154be196581484d35feb9def238fc99dff2d815b6d1d632a903401ebdcb7ca2fbaa33b8f695bd3ad23d966e193bd72d44

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bSq:sxX7QnxrloE5dpUpdbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks