General

  • Target

    a0297986fb5bde80ac5da55eb988235bac0770c9dd62e7d76474e511115d6ffbN

  • Size

    2.6MB

  • Sample

    241109-2cc8haspfx

  • MD5

    240b817bf355d8b3ceccc1c72d34fe60

  • SHA1

    4f943a26e4d6907a1997ae51609dec667964d57a

  • SHA256

    a0297986fb5bde80ac5da55eb988235bac0770c9dd62e7d76474e511115d6ffb

  • SHA512

    d8b6ddc0fd2ca0ad1c7aa6e8bf40e18c9acbdf4a7463204b53e54531f8075dfda63b0d4469ed22b8a282294abaa5f6e76cf14bf4b5479d1cbe6ee8361a4b7ffe

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpYb

Malware Config

Targets

    • Target

      a0297986fb5bde80ac5da55eb988235bac0770c9dd62e7d76474e511115d6ffbN

    • Size

      2.6MB

    • MD5

      240b817bf355d8b3ceccc1c72d34fe60

    • SHA1

      4f943a26e4d6907a1997ae51609dec667964d57a

    • SHA256

      a0297986fb5bde80ac5da55eb988235bac0770c9dd62e7d76474e511115d6ffb

    • SHA512

      d8b6ddc0fd2ca0ad1c7aa6e8bf40e18c9acbdf4a7463204b53e54531f8075dfda63b0d4469ed22b8a282294abaa5f6e76cf14bf4b5479d1cbe6ee8361a4b7ffe

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpYb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks