General

  • Target

    5c60f3436710a4cd9d45ba5ac70f36aca6926a289bfc77f500b9b4a668d06e77N

  • Size

    2.6MB

  • Sample

    241108-ztxx5azdpk

  • MD5

    ab4f678715d26d846bff34f01122aeb0

  • SHA1

    1816bf02caf92218b7da97c11eba28a2c8c1fda9

  • SHA256

    5c60f3436710a4cd9d45ba5ac70f36aca6926a289bfc77f500b9b4a668d06e77

  • SHA512

    07d52efc39c335b10ebf4a4f4f0ba075096a0428e935d6ae9e01b6f1b569caf9555f879ebfa581fb087785453ec1c16f85fe41960a4efb9b90e9aad8e0f487ae

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpjb

Malware Config

Targets

    • Target

      5c60f3436710a4cd9d45ba5ac70f36aca6926a289bfc77f500b9b4a668d06e77N

    • Size

      2.6MB

    • MD5

      ab4f678715d26d846bff34f01122aeb0

    • SHA1

      1816bf02caf92218b7da97c11eba28a2c8c1fda9

    • SHA256

      5c60f3436710a4cd9d45ba5ac70f36aca6926a289bfc77f500b9b4a668d06e77

    • SHA512

      07d52efc39c335b10ebf4a4f4f0ba075096a0428e935d6ae9e01b6f1b569caf9555f879ebfa581fb087785453ec1c16f85fe41960a4efb9b90e9aad8e0f487ae

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpjb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks