General

  • Target

    93eb1d1f331d7b9112024d50b81a37e60a7e21ba9bcdcb0efc1fcb3213f15e29N

  • Size

    2.6MB

  • Sample

    241108-zvxczsslgj

  • MD5

    722f18ccbf71144559a457eb8f01c360

  • SHA1

    901fb77d9f79b234d129b936f9c6a220eb6f4157

  • SHA256

    93eb1d1f331d7b9112024d50b81a37e60a7e21ba9bcdcb0efc1fcb3213f15e29

  • SHA512

    e114d54f3ac2418302b52b784fdc94c98be987404261ec8dca6eb30883617098311ffabb02ee014087767aa107dfe5c79986d2c1f650aa5ee8c180d2ec5a1ab7

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpFb

Malware Config

Targets

    • Target

      93eb1d1f331d7b9112024d50b81a37e60a7e21ba9bcdcb0efc1fcb3213f15e29N

    • Size

      2.6MB

    • MD5

      722f18ccbf71144559a457eb8f01c360

    • SHA1

      901fb77d9f79b234d129b936f9c6a220eb6f4157

    • SHA256

      93eb1d1f331d7b9112024d50b81a37e60a7e21ba9bcdcb0efc1fcb3213f15e29

    • SHA512

      e114d54f3ac2418302b52b784fdc94c98be987404261ec8dca6eb30883617098311ffabb02ee014087767aa107dfe5c79986d2c1f650aa5ee8c180d2ec5a1ab7

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpFb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks