General

  • Target

    1800c6dd4b34e1d537864f2c44f00ae110bdc33b3f35168bbc5596eb19321437N

  • Size

    1003KB

  • Sample

    241109-1x5ykstbrc

  • MD5

    0b98265acb96312a21cc9f6cd08ed0d0

  • SHA1

    f834054fdd8a6ccd7a91adcdb6e3b287f9effa30

  • SHA256

    1800c6dd4b34e1d537864f2c44f00ae110bdc33b3f35168bbc5596eb19321437

  • SHA512

    f370b46c27af4ced2e7d74f9a05f09e02fda64ce2127bccfcabccdfb4b0286fad26f3202dd11c268f1733e29dfe3717cf62e78a9d079abe437b4a3071b547482

  • SSDEEP

    24576:lT96U8L1DSL1D5mStIiIcpxI7Hh9ZBXfTX:l8f1U1d1IiI6O7Hhpr

Malware Config

Targets

    • Target

      1800c6dd4b34e1d537864f2c44f00ae110bdc33b3f35168bbc5596eb19321437N

    • Size

      1003KB

    • MD5

      0b98265acb96312a21cc9f6cd08ed0d0

    • SHA1

      f834054fdd8a6ccd7a91adcdb6e3b287f9effa30

    • SHA256

      1800c6dd4b34e1d537864f2c44f00ae110bdc33b3f35168bbc5596eb19321437

    • SHA512

      f370b46c27af4ced2e7d74f9a05f09e02fda64ce2127bccfcabccdfb4b0286fad26f3202dd11c268f1733e29dfe3717cf62e78a9d079abe437b4a3071b547482

    • SSDEEP

      24576:lT96U8L1DSL1D5mStIiIcpxI7Hh9ZBXfTX:l8f1U1d1IiI6O7Hhpr

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks