General

  • Target

    8c849600807e4301ab6464435c89e03b89bfcebdc144ad250e969977a2612fd6

  • Size

    2.0MB

  • Sample

    241109-1elf8a1rhv

  • MD5

    1db69057a8b8473f24255031615549b8

  • SHA1

    a9841ac61616387c54914df352ba30cf13691335

  • SHA256

    8c849600807e4301ab6464435c89e03b89bfcebdc144ad250e969977a2612fd6

  • SHA512

    8e0f0a4c4297baf3ead5add161412da382288f10181856d52b127dc3c77190fdbec10c729a7d482147754b891248144943a2b5c1bd24749c318919deefde46c4

  • SSDEEP

    49152:Pgi7tbYOMjUfkptVx9ErvL73RLSo+2fhl:Pd7tMjUu5ervvRe12fD

Malware Config

Targets

    • Target

      8c849600807e4301ab6464435c89e03b89bfcebdc144ad250e969977a2612fd6

    • Size

      2.0MB

    • MD5

      1db69057a8b8473f24255031615549b8

    • SHA1

      a9841ac61616387c54914df352ba30cf13691335

    • SHA256

      8c849600807e4301ab6464435c89e03b89bfcebdc144ad250e969977a2612fd6

    • SHA512

      8e0f0a4c4297baf3ead5add161412da382288f10181856d52b127dc3c77190fdbec10c729a7d482147754b891248144943a2b5c1bd24749c318919deefde46c4

    • SSDEEP

      49152:Pgi7tbYOMjUfkptVx9ErvL73RLSo+2fhl:Pd7tMjUu5ervvRe12fD

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks