General

  • Target

    7fa958b4c6eaaadbec7d1b57bd083cee0a474cfae82c0f0f0e297342451d6322

  • Size

    2.6MB

  • Sample

    241109-1gtklssjdv

  • MD5

    d63daeedae89ae68e72b58c06a0cae7a

  • SHA1

    01a45ce1211058accec50d91a5d7a0eb7018edfe

  • SHA256

    7fa958b4c6eaaadbec7d1b57bd083cee0a474cfae82c0f0f0e297342451d6322

  • SHA512

    b3dc4297cee9b3e2108416096be8b07ccc7017b71de58999670cac4a8215f9b952dc6b967887b14a0eaed2c397e1a04f80f9595ff86ea63465e10a6d72e1a165

  • SSDEEP

    24576:+A8vyrepIND/0bfSPdaY3RFo3UR+h+8fEvdDrGnrdEROGHOhdYiWdCMJ5QxlpYCi:+A81IJPjqnEvdDqnroHOwiW0MbQxJHO

Malware Config

Targets

    • Target

      7fa958b4c6eaaadbec7d1b57bd083cee0a474cfae82c0f0f0e297342451d6322

    • Size

      2.6MB

    • MD5

      d63daeedae89ae68e72b58c06a0cae7a

    • SHA1

      01a45ce1211058accec50d91a5d7a0eb7018edfe

    • SHA256

      7fa958b4c6eaaadbec7d1b57bd083cee0a474cfae82c0f0f0e297342451d6322

    • SHA512

      b3dc4297cee9b3e2108416096be8b07ccc7017b71de58999670cac4a8215f9b952dc6b967887b14a0eaed2c397e1a04f80f9595ff86ea63465e10a6d72e1a165

    • SSDEEP

      24576:+A8vyrepIND/0bfSPdaY3RFo3UR+h+8fEvdDrGnrdEROGHOhdYiWdCMJ5QxlpYCi:+A81IJPjqnEvdDqnroHOwiW0MbQxJHO

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks