General

  • Target

    429d01c96d27046d2fce9bf6caeec4a6f6b6b514a0ab6aa3ae7d7870e4c8570f

  • Size

    2.6MB

  • Sample

    241109-1htxrswjar

  • MD5

    9dae92432b6f061386e3b45dd3240788

  • SHA1

    664cb0186ec640ec89d59cf65e905b3a82539be8

  • SHA256

    429d01c96d27046d2fce9bf6caeec4a6f6b6b514a0ab6aa3ae7d7870e4c8570f

  • SHA512

    d8dd120b5b071f228662c9c3ddd23f80a71ff9dac8a47bd89f9234abed1a8fa1d20e498df07dc4da0032df2e04010e0be1cfbd12ab7c972efe4dd952af5b28d4

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSq:sxX7QnxrloE5dpUpEbV

Malware Config

Targets

    • Target

      429d01c96d27046d2fce9bf6caeec4a6f6b6b514a0ab6aa3ae7d7870e4c8570f

    • Size

      2.6MB

    • MD5

      9dae92432b6f061386e3b45dd3240788

    • SHA1

      664cb0186ec640ec89d59cf65e905b3a82539be8

    • SHA256

      429d01c96d27046d2fce9bf6caeec4a6f6b6b514a0ab6aa3ae7d7870e4c8570f

    • SHA512

      d8dd120b5b071f228662c9c3ddd23f80a71ff9dac8a47bd89f9234abed1a8fa1d20e498df07dc4da0032df2e04010e0be1cfbd12ab7c972efe4dd952af5b28d4

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSq:sxX7QnxrloE5dpUpEbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks