General

  • Target

    5141889cbb17ab3c05f8e3735094cc54bd21ab7aac09d50da8d49d70f3f52665N

  • Size

    2.6MB

  • Sample

    241109-1xhs2stbqc

  • MD5

    16414be91150027ce9134b316fdf5ad0

  • SHA1

    c95134996d496172b555e09160e256351ccd8e37

  • SHA256

    5141889cbb17ab3c05f8e3735094cc54bd21ab7aac09d50da8d49d70f3f52665

  • SHA512

    64d4637a61eaf7e951c59a0a320e4ad0cb8e9d2e9e6e08c7c0fcdf1666f7c24a3f330a1741d26ace3d9bb8fd792abdfea87c2af2ef3a77c190265f24bdeb2937

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBvB/bSq:sxX7QnxrloE5dpUpYbV

Malware Config

Targets

    • Target

      5141889cbb17ab3c05f8e3735094cc54bd21ab7aac09d50da8d49d70f3f52665N

    • Size

      2.6MB

    • MD5

      16414be91150027ce9134b316fdf5ad0

    • SHA1

      c95134996d496172b555e09160e256351ccd8e37

    • SHA256

      5141889cbb17ab3c05f8e3735094cc54bd21ab7aac09d50da8d49d70f3f52665

    • SHA512

      64d4637a61eaf7e951c59a0a320e4ad0cb8e9d2e9e6e08c7c0fcdf1666f7c24a3f330a1741d26ace3d9bb8fd792abdfea87c2af2ef3a77c190265f24bdeb2937

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBvB/bSq:sxX7QnxrloE5dpUpYbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks