General

  • Target

    cb7347d974910c24312d3be196373cf8b6bcf8bd7dc29ca382a8f316740301fdN

  • Size

    2.6MB

  • Sample

    241109-161efswndn

  • MD5

    bb1d3ef4f3310871466e10dff6128d60

  • SHA1

    55fd891240b6c0085626120c0d4ac4a965dd6015

  • SHA256

    cb7347d974910c24312d3be196373cf8b6bcf8bd7dc29ca382a8f316740301fd

  • SHA512

    f7276a67c7b52d3d031c30267188ad45be77b4f57110cbf8e9c80463ff845b5df1b12e66f23667badc59aacff9b2271e7cf258e76e335b2c1412f0e9f8086f81

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBbB/bS:sxX7QnxrloE5dpUpsb

Malware Config

Targets

    • Target

      cb7347d974910c24312d3be196373cf8b6bcf8bd7dc29ca382a8f316740301fdN

    • Size

      2.6MB

    • MD5

      bb1d3ef4f3310871466e10dff6128d60

    • SHA1

      55fd891240b6c0085626120c0d4ac4a965dd6015

    • SHA256

      cb7347d974910c24312d3be196373cf8b6bcf8bd7dc29ca382a8f316740301fd

    • SHA512

      f7276a67c7b52d3d031c30267188ad45be77b4f57110cbf8e9c80463ff845b5df1b12e66f23667badc59aacff9b2271e7cf258e76e335b2c1412f0e9f8086f81

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBbB/bS:sxX7QnxrloE5dpUpsb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks