General

  • Target

    0c279ad9bf07aae29f9c51d0be602f6f8fa782df28120b77b8a0ebda0701d6d3N

  • Size

    2.6MB

  • Sample

    241109-1c6dlssfqf

  • MD5

    f947c442617cc9aaaeec831326d20910

  • SHA1

    672d2cb418de9767f27666fade7388b14435433b

  • SHA256

    0c279ad9bf07aae29f9c51d0be602f6f8fa782df28120b77b8a0ebda0701d6d3

  • SHA512

    f705241d1800628ee42a3387ee3f1ccf82e9709498fef1f8ba99079cceee22fbdac76ad3641189c9d11b10c4334fab0f378fc57a55189a3f2c2e6dee270a2d8b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSq:sxX7QnxrloE5dpUp3bV

Malware Config

Targets

    • Target

      0c279ad9bf07aae29f9c51d0be602f6f8fa782df28120b77b8a0ebda0701d6d3N

    • Size

      2.6MB

    • MD5

      f947c442617cc9aaaeec831326d20910

    • SHA1

      672d2cb418de9767f27666fade7388b14435433b

    • SHA256

      0c279ad9bf07aae29f9c51d0be602f6f8fa782df28120b77b8a0ebda0701d6d3

    • SHA512

      f705241d1800628ee42a3387ee3f1ccf82e9709498fef1f8ba99079cceee22fbdac76ad3641189c9d11b10c4334fab0f378fc57a55189a3f2c2e6dee270a2d8b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSq:sxX7QnxrloE5dpUp3bV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks