General

  • Target

    52470277ed42158df246f90d33c68b4af0b10300ba3e96597c2f9e6dbbff0528N

  • Size

    2.6MB

  • Sample

    241109-1ewl7asgpp

  • MD5

    ff92e3fef384996aff11d1723e5a3ee0

  • SHA1

    13a463cd1f20975fa764cb2d2b0ecddb97c40a45

  • SHA256

    52470277ed42158df246f90d33c68b4af0b10300ba3e96597c2f9e6dbbff0528

  • SHA512

    7a01d56dd0ecf0997fce61cc24c0de816737ac5ac662f1331679d283ea66ed09d4951fd22de621db55800c96209ee125915cb8dfab5e6cdda287d90bad606e5e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpTb

Malware Config

Targets

    • Target

      52470277ed42158df246f90d33c68b4af0b10300ba3e96597c2f9e6dbbff0528N

    • Size

      2.6MB

    • MD5

      ff92e3fef384996aff11d1723e5a3ee0

    • SHA1

      13a463cd1f20975fa764cb2d2b0ecddb97c40a45

    • SHA256

      52470277ed42158df246f90d33c68b4af0b10300ba3e96597c2f9e6dbbff0528

    • SHA512

      7a01d56dd0ecf0997fce61cc24c0de816737ac5ac662f1331679d283ea66ed09d4951fd22de621db55800c96209ee125915cb8dfab5e6cdda287d90bad606e5e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpTb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks